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CERTIFICATIONS 
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Cisco certifications are globally respected IT certification programs for Wide Area 
Networking (Internetworking). 




Cisco has five levels of certification: 

- CCENT (Cisco Certified Entry Networking Technician) 

- CCNA (Cisco Certified Network Associate) 

- CCNP (Cisco Certified Network Professional) 

- CCIE (Cisco Certified Internetworking Expert) 

- CCAr (Cisco Certified Architect) 




CCNA Certification Track 


There are 2 tracks for CCNA examination : 


ZOOM 




TECHNOLOGIES, 


') 


• Two paper track 

- ICND 1 (100-101) (On passing this exam the candidate is CCENT) 

- ICND 2 (200-101) (On passing both exams the candidate is CCNA) 

OR 

• One paper track 

- CCNA (200-120) (On passing this exam the candidate is CCNA) 



0 


2 








CCNA Certification 


* Cisco Certified Network Associate R&S exam 
Area Networking. 

Exam Number 

Duration 

Number of questions 
Passing Mark 
Available Languages 
Exam Questions 


ZOOM 

is the associate level exam into Wide 

200-120 CCNAX 
90 Minutes 
50-60 questions 
825 / 1000 
English 

Multiple-choice single answer 
Multiple-choice multiple answer 
Drag-and-drop 
Simulations (Simlet) 

Scenario Based (Testlet) 



Reference Books 


CCNA ICND 1 (100-101) - Wendell Odom - Cisco Press 
CCNA ICND 2 (200-101) - Wendell Odom - Cisco Press 
OR 

CCNA Study Guide (200-120) - Todd Lamle 
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.•M*. 

CtMO 


Official Cert Guide 


Cisco 

CCENT/ 

CCNA 

ICND1 100-101 


CiftCO 


Official Cert Guide 



Cisco 

CCNA 

Routing and Switching 
ICND2 200-101 


.•|«.i | •. 

( 4(0 



Cisco 

CCNA 

Routing and 
Switching 200-120 

Official Cert Guide Library 
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Network 


* Interconnection of two or more devices is called as a network. 

* The communication between two or more interconnected devices is called 
networking. 

• An internetwork is a connection of two or more networks. 

• Internetworking means communication between different networks. 
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Types of Networks 
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• LAN 

Local Area Networks are used to connect networking devices that are in a very close 
geographic area such as a floor of a building, a building itself or within a campus. 

• MAN 

Metropolitan Area Network are used to connect networking devices that may span 
around the entire city. 

• WAN 

Wide Area Networks which connects two or more LANs present at different 
geographical locations. 
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Basic requirements to form a network 
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• NIC (Network interface card) also called as LAN card 

• Media 

• Networking devices ( Hub, Switch, Router etc. ) 

• Protocols 

• Logical Address ( IP address ) 



NIC(Network Interface Card) 


* NIC is the interface between the computer and the network 

* It is also known as the Lan card or Ethernet card 
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• Ethernet cards have a unique 48 bit address called as MAC (Media access control) 
address 

- MAC address is also called as Physical address or hardware address 

- The 48 bit MAC address is represented as 12 Hexa-decimal digits 

- Example: 0016. D3FC.603F 

• Network cards are available in different speeds 

- Ethernet (10 Mbps) 

- Fast Ethernet (100 Mbps) 

- Gigabit Ethernet (1000 Mbps) 
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The purpose of the media is to transport bits from one machine to another. 
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Twisted pair 









UTP Cable 



STP Cable 
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Types of Twisted Pair cables 
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Category 

DTR 

Purpose 

Connector 

CAT 1 

1 Mbps 

Telephone Lines 

RJ 11 

CAT 2 

4 Mbps 


RJ 11 

CAT 3 

10 Mbps 

Ethernet 

RJ 45 

CAT 4 

16 Mbps 


RJ 45 

CATS 

100 Mbps 

Fast Ethernet 

RJ 45 

CAT 5e 

500 Mbps 


RJ 45 

CAT 6 

1000 Mbps 

Gigabit Ethernet 

RJ 45 



Topology 
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Topology is a physical layout of the systems connected in a network. 
Different types of topology are: 

• Bus 

• Ring 

• Mesh 


Star 
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Bus Topology 
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• In bus topology all devices are connected to a single cable or backbone. 


• It supports half duplex communication. 

• A break at any point along the backbone will result in total network failure. 
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Ring Topology 
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* Failure of a single device or a break anywhere in the cable causes the full network to 
stop communicating 
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Mesh Topology 
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• In mesh topology each device is directly connected to all other devices 


• The disadvantage is the number of NIC's required on each device and the complex 
cabling. 
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Star Topology 
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• The most commonly used topology 

• It consist of one centralized device which can be either a switch or a hub. 

• The devices connect to the various ports on the centralized devices. 
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Networking devices 


The various types of networking devices are: 

• Hub 

• Switch 

• Router 
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Hub / Repeater 
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• It is not an Intelligent Device. 

• It works with bits. 

• Uses broadcast for communication. 

• Bandwidth is shared. 

• Half-duplex communication. 
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Functions of HUB 
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Functions of HUB 
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Switch 


• It is an Intelligent device. 

• It maintains MAC address table (hardware address). 

• Each port of the switch has fixed bandwidth. 

• It works with Flooding and Unicast. 

• Supports full duplex communication 
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Functions of Switch 
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Functions of Switch 
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Source MAC 



DATA 


Source MAC 
Destination MAC 


001C.C01A.0004 


001C-C01 A-Oi 




Functions of Switch 
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Router 


It is an Intelligent device 
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• It works with Logical Addressing (i.e. IP, IPX, AppleTalk) 

• It works with Fixed bandwidth 


Symbolic Representation: 
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Auxiliary J 
port 
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Interconnecting Network Devices 


ZOOM 

^TECHNOLOGIES 


'J 


PC HUB Bridge Switch Router 


PC 

Cross Cable 

Straight 

Cross Cable 

Straight 

Cross Cable 

HUB 

Straight 

Cross Cable 

Straight 

Cross 

Straight 

Bridge 

Cross Cable 

Straight 

Cross Cable 

Straight 

Cross Cable 

Switch 

Straight 

Cross 

Straight 

Cross Cable 

Straight 

Router 

Cross Cable 

Straight 

Cross Cable 

Straight 

Cross Cable 




Open System Interconnect (OSI) 
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OSI 
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OSI was developed by the International Organization for Standardization (ISO) and 
introduced in 1984. 

It is a layered architecture (consists of seven layers). 

Each layer defines a set of functions which takes part in data communication. 



OSI Model Layers 
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Layer - 
Layer - 
Layer - 
Layer - 
Layer - 
Layer - 
Layer - 


Application 


Presentation 


Session 


Transport 


Network 


> 


Data Link 


Physical 


User support Layers 
or 

Software Layers 


Core layer of the 
OSI 


Network support 
Layers 

or 

Hardware Layers 
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Application Layer 
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Application 


Presentation 


Application Layer : is responsible for providing an 
interface for the users to interact with application services 
or Networking Services . 

Ex: Web browser(HTTP), Telnet etc. 


Session 


Transport 


Network 


Data Link 


Physical 



Examples of Networking Services 
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Service 

Port No. 

HTTP 

80 

FTP 

21 

SMTP 

25 

TELNET 

23 

TFTP 

69 
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Data flow from Application Layer 
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Presentation 


Session 


Transport 


Network 


Data Link 


Data 


Physical 



Presentation Layer 
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Application 


Presentation 


Session 


Transport 


Network 


Data Link 


Physical 


Presentation Layer : it is responsible for defining a 
standard format to the data. 

It deals with data presentation. 

The major functions described at this layer are.. 

Encoding - Decoding 

Ex : ASCII, EBCDIC (Text) 

JPEG,GIF,TIFF (Graphics) 

MIDI, WAV (Voice) 

MPEG, DAT, AVI (Video) 

Encryption - Decryption 

Compression - Decompression 
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Data flow from Presentation Layer 
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Application 
Presentation 
Session 
Transport 
Network 
Data Link 
Physical 


Data 


Data 





Session Layer 
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Application 


Presentation 


Session 


Transport 


Network 


Data Link 


Physical 


Session Layer : It is responsible for establishing, 
maintaining and terminating the sessions. 

Session ID is used to identify a session or interaction. 

Ex: 

RPC Remote Procedural Call 
SQL Structured Query Language 
ASP AppleTalk Session protocol 
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Data flow from Session Layer 
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Application 
Presentation 
Session 
Transport 
Network 
Data Link 
Physical 


Data 


Data 





Transport Layer 
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Application 


Presentation 


Session 


Transport 


Network 


Data Link 


Physical 


Transport Layer : It provides data delivery mechanism 
between the applications in the network. 

The major functions described at the Transport Layer are. 


•Identifying Service 
•Multiplexing & De-multiplexing 
•Segmentation 
•Sequencing & Reassembling 
•Error Correction 
•Flow Control 
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Identifying a Service 


• Identification of Services is done using port Numbers. 

• Port is a logical communication Channel 


Total No. Ports 
Reserved Ports 
Open Ports 


0 - 65535 

1 - 49151 
49152 - 65535 
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Multiplexing & De-multiplexing 
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Application 


Presentation 


Session 

80 [ 21 1 25 B 53 1 67 l 69 


Transport 


TCP -6 


UDP-17 


Network 


Data Link 


Physical 
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Transport Layer Protocols 
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* The protocols which takes care of Data Transportation at Transport layer are TCP and UDP 







TCP 

J 





Transmission Control Protocol 



Connection Oriented 



Supports Acknowledgements 



Reliable communication 



Slower data Transportation 



Protocol No is 6 


J 

Ex: HTTP, FTP, SMTP 




User Datagram Protocol 
Connection Less 

No support for Acknowledgements 
Unreliable communication 
Faster data Transportation 
Protocol No is 17 
Ex: DNS, DHCP, TFTP 



Segmentation 
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Sequencing 
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Sequencing 
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Reassembling 
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Flow Control and Error Correction 
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Source 


Destination 





\ 

— ^ k v 

Due to congestion of 
the receiver, Segment 
3 is lost 

ACK 3 

Window size = 2 
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Data flow from Transport Layer 
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Network Layer 
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Transport 



Network 

M 


Data Link 


Physical 


Network Layer : It provides Logical addressing & Path 
determination (Routing) 

The protocols that work in this layer are: 

Routed Protocols : 

IP, IPX, AppleTalk.. Etc 

Routed protocols used to carry user data between 
hosts. 

Routing Protocols : 

RIP, OSPF.. Etc 

Routing protocols performs Path determination 
(Routing). 




c c N A 



0 


27 















Data flow from Network Layer 
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Device that works at 
Network Layer is Router 
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Datalink Layer 
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Application 


Presentation 


Session 


Transport 


Network 


Data Link 


Physical 


Datalink Layer 
It has 2 sub layers 

• MAC (Media Access Control) It provides reliable transit of 
data across a physical link. 

It also provides ERROR DETECTION using CRC (Cyclic 
Redundancy Check) 

Ex: Ethernet, Token ring...etc 

* LLC (Logical Link Control) 

It provides communication with Network layer. 
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Data flow from Data link Layer 
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Devices that work at 
Data link layer is Switch 
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Data 


Segment 


Packet 
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Physical Layer 
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Physical Layer : It defines the electrical, Mechanical & functional 
specifications for communication between the Network devices. 
The functions described at this layer are 
Encoding/decoding: 

It is the process of converting the binary data into signals 
based on the type of the media. 

Copper media : Electrical signals of different voltages 

Fiber media: Light pulses of different wavelengths 
Wireless media: Radio frequency waves 



0 


29 





















Data flow from Physical Layer 
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Devices that work at 
physical layer are Hub , Repeater 
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Comparison between OSI & TCP/IP Model 
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Internet 


Network Access 
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LAN Setup 




Intornot Protocol (TCP/IP) Proportlos 


Internet Protocol (TCP/IP) Proportlos 




General 


You c an get IP vet ting v assigned automatically if yu 
this capability Otherwise, you nrad to ask your nett 
the appropriate IP settings 


O Obtain an IP address automatically 
<«£) Use the following IP address 
IP address | 192 1 Gf 


General 


You can get IP settings assigned automatically if your network supports 
Ihis capability Otherwise, you need to ask your network admin is trator for 
the appropriate IP settings 


O Obtain an IP address automatically 
(•> Use Ihe following IP address 
IP address 


192 1G0 


Intornot Protocol (TCP/IP) Proportlos 


Internet Protocol (TCP/IP) Proportlos 


m 


General 


You can get IP settings assigned automatically if yc 
ttiiv capability. Otheiwise, you need to avk your net 
the appropriate IP settings 

O tlbtoin on IP address automatically 
Use the following IP addles*. 

IP address: 192 . 16 

S ubnet mask 
Hetault gateway 


255 25 


Obtain DNS server .address automatically 

(•> Use the following DNS server addresses: 
Preferred DNS server 
Alternate D NS server: 


General 


You can get IP vettings assigned automatically if your network supports 

this capability Otherwise. you need to ask your network administrator for 

the appropriate IP settings 

O Obtain an IP address automatically 
Use Ihe following IP address 

IP add.« . 192 16B 1 4 

Subnet mask: | 255 . 255 . 255 . 0 ) 

Default gateway. ' . . . | 


Obtain DNS server address automatically 

(•) Use the following DNS server addresses 
Preferred DNS server 
A Iternote DNS server: 


| A rfeanced 


[j OK 


Cance 
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IP Address 


• IP Address is a Logical Address 


ZOOM 


V 


TECHNOLOGIES, 


u 


* It is a Network Layer address (Layer 3) 

• Two Versions of IP: 

- IP version 4 is a 32 bit address 

- IP version 6 is a 128 bit address 
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IP version 4 
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Bit is represent by 0 or 1 (i.e. Binary) 

IP address in binary form (32 bits): 
01010101000001011011111100000001 

32 bits are divided into 4 Octets: 


First Octet Second Octet Third Octet 




11010101. 00000101. 
• IP address in decimal form: 

85.5.191.1 



0111111. 


Forth Octet 

00000001 



IPv4 address range 


Taking Example for First Octet : 
Total 8 bits. Value will be 0's and l's 
i.e. 2 8 = 256 combination 
2 7 2 6 2 5 2 4 2 3 2 2 2 1 2 ° 

000 0000 0=0 
000 0000 1=1 
000 0001 0=2 
000 0001 1=3 
000 0010 0=4 
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Total IP Address Range 
0 . 0 . 0 . 0 
to 

255.255.255.255 


111 1111 1=255 
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Decimal to Binary 
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IP Address Classification 


IP address are divided into 5 Classes 
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• CLASS A ^ 


• CLASS B > Used in LAN & WAN 

• CLASS C 






CLASS D 

CLASS E 


> 

> 


Reserved for Multicasting 
Reserved for Research & Development 



Priority Bit 
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• Priority Bit is used for IP Address classification. 

• Most significant bit(s) from the first octet are selected for Priority Bit(s). 

• Class A priority bit is 0 

• Class B priority bits are 10 

• Class C priority bits are 110 

• Class D priority bits are 1110 

• Class E priority bits are 1111 
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Class A Range 
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• In Class A : First bit of the first octet is reserved as priority bit, bit value is zero. 


• Oxxxxxxx. xxxxxxxx. xxxxxxxx. xxxxxxxx 


2 7 2 6 2 5 2 4 2 3 2 2 2 1 2 ° 
000 0000 0 
000 0000 1 
000 0001 0 
000 0001 1 
000 0010 0 



011 1111 1 


= 0 
= 1 
= 2 


Class A Range 
0.0. 0.0 to 
127 . 255 . 255 .255 


= 127 



Class B Range 
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* In Class B : First two bits of the first octet are reserved as priority bits, bit value as 10. 


• lOxxxxxx. xxxxxxxx. xxxxxxxx. 
2 7 2 6 2 5 2 4 2 3 2 2 2 1 2 ° 

100 0000 0= 128 
100 0000 1= 129 
100 0001 0= 130 
100 0001 1= 131 
100 0010 0= 132 



101 1111 1=191 


xxxxxxxx 


Class B Range 
128.0.0.0 to 
191 . 255 . 255 .255 
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Class C Range 
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• In Class C : First three bits of the first octet are reserved as priority bits, bit value as 110. 


• llOxxxxx. xxxxxxxx. xxxxxxxx. xxxxxxxx 
2 7 2 6 2 5 2 4 2 3 2 2 2 1 2 ° 


110 0000 0= 192 
110 0000 1= 193 
110 0001 0= 194 
110 0001 1= 195 
110 0010 0= 196 



110 1111 1=223 


Class C Range 
192.0.0.0 to 
223 . 255 . 255 .255 



Class D Range 
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* In Class D : First four bits of the first octet are reserved as priority bits, bit value as 1110. 

• lllOxxxx. xxxxxxxx. xxxxxxxx. xxxxxxxx 


2 7 2 6 2 5 2 4 2 3 2 2 2 1 2 ° 

0 0 0 0 = 224 

0 0 0 1 = 225 

0 0 1 0 = 226 

0 0 1 1 = 227 

0 1 0 0 = 228 

111 1 = 239 


1110 

1110 

1110 

1110 

1110 

__ 1 

1110 


Class D Range 
224 . 0 . 0 . 0 to 
239 . 255 . 255 .255 
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Class E Range 
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• In Class E : First four bits of the first octet are reserved as priority bits, bit value as 1111. 


• llllxxxx. xxxxxxxx. xxxxxxxx. xxxxxxxx 


2 7 2 6 2 5 2 4 2 3 2 2 2 1 2 ° 

0 0 0 0 = 240 

0 0 0 1 = 241 

0 0 1 0 = 242 

0 0 1 1 = 243 

0 1 0 0 = 244 

111 1 = 255 


1111 

1111 

1111 

1111 

1111 

1111 


Class E Range 
240.0.0.0 to 
255 . 255 . 255 .255 
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Class A Range 
0 . 0 . 0 . 0 to 

127.255.255.255 



Class B Range 

128.0.0.0 to 

191.255.255.255 



Class C Range 
192.0.0.0 to 
223 . 255 . 255 .255 


Class D Range 

224 .0.0.0 to 

239 . 255 . 255 .255 


Class E Range 

240.0.0.0 to 

255 . 255 . 255 .255 
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Identifying Class 
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IP Address 

Class 

10.1.100.1 

A 

150.17.2.200 

B 

192.1.1.1 

C 

224.0.0.10 

D 

120.200.1.1 

A 



Octet Format 
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• IP address is divided into Network & Host Portion 

- CLASS A is written as N.H.H.H 

- CLASS B is written as N.N.H.H 

- CLASS C is written as N.N.N.H 
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CLASS A - No. Networks & Hosts 
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• Class A Octet Format is N . H . H . H 

Network bits : 8 Host bits : 24 

• No. of Networks 

_ 2 no of network bits- Priority bit 

= 2 8 1 (-1 is Priority Bit for Class A) 

= 2 7 

= 128 - 2 (-2 is for 0 & 127 Network) 

= 126 Networks 

• No. of Host 

_ 2 no host -2 

= 2 24 - 2 (-2 is for Network ID & Broadcast ID) 

= 16777216 - 2 

= 16777214 Hosts/Network 



CLASS B - No. Networks & Hosts 
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• Class B Octet Format is N . N . H . H 

Network bits : 16 Host bits : 16 

• No. of Networks 

_ 2 no of network bits- Priority bit 

= 2 16 ' 2 (-2 is Priority Bit for Class B) 

= 2 14 

= 16384 Networks 

• No. of Host 

_ 2 no host kits -2 

= 2 16 - 2 (-2 is for Network ID & Broadcast ID) 

= 65536 - 2 

= 65534 Hosts/Network 
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CLASS C - No. Networks & Hosts 


• Class C Octet Format is N . N . N . H 

Network bits : 24 Host bits : 8 

• No. of Networks 

= 2 no of network bits- Priority bit 

= 2 24 3 (-3 is Priority Bit for Class C) 

= 2 21 

= 2097152 Networks 

• No. of Host 

_ 2 no °* host k' ts -2 

= 2 8 - 2 (-2 is for Network ID & Broadcast ID) 

= 256 - 2 

= 254 Hosts/Network 
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Network & Broadcast Address 
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• Network address: IP address with all bits as ZERO in the host portion. 

• Broadcast address: IP address with all bits as ONES in the host portion. 

• Valid IP Addresses lie between the Network Address and the Broadcast Address. 

• Only Valid IP Addresses are assigned to hosts/clients 



0 


41 








Example - Class A 


• Class A: N.H.H.H 
- Network Address : 
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Oxxxxxxx. 00000000.00000000.00000000 
- Broadcast Address : 
Oxxxxxxx.11111111.11111111.11111111 




Example - Class B 
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• Class B : N.N.H.H 
- Network Address : 


lOxxxxxx.xxxxxxxx.OOOOOOOO.OOOOOOOO 


- Broadcast Address : 
lOxxxxxx.xxxxxxxx. 1 1 1 1 1 1 1 1. 1 1 1 1 1 1 1 1 
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Example - Class C 
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• Class C : N.N.N.H 
- Network Address : 


llOxxxxx.xxxxxxxx.xxxxxxxx.OOOOOOOO 
- Broadcast Address : 
llOxxxxx.xxxxxxxx.xxxxxxxx.llllllll 


Class C 
192 . 168 . 1.0 


Network Address 



Valid IP Addresses 



Identifying Network Address and Broadcast Address 


ZOOM 




TECHNOLOGIES, 


"J 


IP Address 

Network Address and Broadcast Address 

120.1.1.1 

120.0.0.0 and 120.255.255.255 

172.16.1.1 

172.16.0.0 and 172.16.255.255 

10.100.1.10 

10.0.0.0 and 10.255.255.255 

192.168.1.10 

192.168.1.0 and 192.168.1.255 

150.10.1.1 

150.10.0.0 and 150.10.255.255 
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Private IP Address 
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There are certain addresses in each class of IP address that are reserved for Private 
Networks. These addresses are called private addresses. 


• These addresses are not Routable (or) valid on Internet. 


r 

Class A 

10.0.0.0 to 10.255.255.255 



Class B 

172.16.0.0 to 172.31.255.255 


, 

Class C 

192.168.0.0 to 192.168.255.255 




Subnet Mask 
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• Subnet Mask differentiates the Network and Host portions of an IP address 


* Represented with all l's in the network portion and with all 0's in the host portion. 
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Subnet Mask - Examples 
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• Class A: N.H.H.H 

iiiiiiiioooooooo.oooooooo.oooooooo 

Default Subnet Mask for Class A is 255.0.0.0 

• Class B : N.N.H.H 

iiiiiin iiiiiin 00000000.00000000 
Default Subnet Mask for Class B is 255.255.0.0 

• Class CrN.N.N.H 

iiiiiin iiiiiin iiiiiin oooooooo 

Default Subnet Mask for Class C is 255.255.255.0 



Default subnet mask 
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IP Address 

Default subnet mask 

17.1.1.1 

255.0.0.0 

202.1.0.18 

255.255.255.0 

190.10.1.1 

255.255.0.0 

102.10.1.10 

255.0.0.0 

192.0.0.1 

255.255.255.0 
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How Subnet Mask Works ? 


IP Address : 192.168.1.1 

Subnet Mask : 255.255.255.0 

ANDING PROCESS : 

192.168.1.1 = 11000000.10101000.00000001.00000001 

255.255.255.0 = 11111111.11111111.11111111.00000000 


192.168.1.0 = 11000000.10101000.00000001.00000000 


The output of an AND table is 1 if both its inputs are 1. 
For all other possible inputs the output is 0. 

s rrrr ~"x 

I fiir 

I wmmWM | 
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Subnetting 
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^TECHNOLOGIES^ 

• Creating Multiple independent Networks from a single Network 

• Converting Host bits into Network bits 
(i.e. converting 0's into l's ) 

• Subnetting can be performed in two ways 

• FLSM ( Fixed Length Subnet Mask ) 

• VLSM ( Variable Length Subnet Mask ) 

• Subnetting can be done based on requirement 

• Number of Networks Required? 

• Number of Hosts Required? 

Note:- It is very Useful for Internet Service Providers (ISP), Large Organizations 
/Companies etc., 



Requirement of Networks 
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• A corporate network has 200 PC's 

• Which class of IP Address is preferred for the network ? 
Answer : class C 

• There are 4 departments with 50 pc's each 


Marketing 

Sales 

Finance 

IT 


192.168.1.1 to 192.168.1.50 
192.168.1.51 to 192.168.1.100 
192.168.1.101 to 192.168.1.150 
192.168.1.151 to 192.168.1.200 
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* Administrators requirement : 

* Inter-department communication should not be there 
Solution : 

* Allocate different Networks to each Department 
i.e.. 


Marketing 


Sales 

Finance 

IT 



192.168.1.1 to 192.168.1.50 

192.168.2.1 to 192.168.2.50 

192.168.3.1 to 192.168.3.50 

192.168.4.1 to 192.168.4.50 



Main Aim of Subnetting 
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* Problem with the previous scenario is 

* Wastage of IP addresses, if it is Public IP addresses (Approx. 800 ) 

* To reduce the wastage of IP addresses, we have Subnetting 
— Requirement of Networks 
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Requirement of Subnets - 4 no's ? 


Class C : 192.168.1.0 
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255.255.255.0 
Subnets required : 4 no's 
= 2 n > Req. of Subnet 
= 2" > 4 
= 2 2 > 4 
= 4 subnets 


Customized subnet mask = 

255. 255. 255. 0 



11111111. 11111111. 11111111. 00000000 

. 11000000 

255. 255. 255. 192 


/ _rrnt_ 

i -tut 
i Bon 



Calculation of Hosts / subnet 

= 2 h - 2 ( -2 is for Network ID & Broadcast ID ) 
= 2 6 - 2 
= 64-2 

= 62 Hosts/subnet 


Subnet Range 


Network ID Broadcast ID 


192.168.1.1 to 192.168.1.63 
192.168.1.64 to 192.168.1.127 
192.168.1.128 to 192.168.1.191 
192.168.1.192 to 192.168.1.255 
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FLSM 
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■ Marketing 

■ Sales 

■ Finance 

■ IT 
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* Subnetting a subnet is called as Variable Length Subnet Mask 

* VLSMs provide the capability to include more than one subnet mask within a major 
network 
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Requirement of Hosts 


* In corporate network there are 4 departments and their requirement as follows, 


Marketing 10 

Sales 50 

Finance 25 

IT 100 


ZOOM 

^TECHNOLOGIES 


'J 


Arrange them in Descending Order 


IT 100 

Sales ■■■► 50 

Finance 25 

Marketing 10 



Requirement of Hosts 


Class C : 192.168.1.0 


ZOOM 




TECHNOLOGIES, 


u 


255.255.255.0 


Hosts required : 100 , 50 , 25 and 10 
First , we calculate for IT = 100 Hosts 
2 h -2 > Req. of Hosts 
= 2 h -2 >100 
= 2 7 -2 >100 
= 128 - 2 = 126 hosts/subnet 
Customized subnet mask = 
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Calculation of subnets 


= 2 " 


= 2 1 
= 2 

= 2 Hosts/subnet 


f -tut 

l niTi 


Subnet Range 

Network ID Broadcast ID 

192.168.1.0 to 192.168.1.127 IT 
192.168.1.128 to 192.168.1.255 



Now, Available network is 192.168.1.128 to 192.168.1.255 
Next, we calculate for Sales = 50 Hosts 
2 h - 2 > Req. of Hosts 
= 2 h -2 >50 
= 2 6 -2 >50 
= 64 - 2 = 62 hosts/subnet 


Customized subnet mask = 
255. 255. 255. 


128 


11111111. 11111111. 11111111. 10000000 ' 


255. 


255. 


255. 


. 11000000 
192 
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Calculation of subnets 


= 2 " 


= 2 1 
= 2 

= 2 Hosts/subnet 


f -tut 

l niTi 


Subnet Range 

Network ID Broadcast ID 

192.168.1.128 to 192.168.1.191 SALES 
192.168.1.192 to 192.168.1.255 




Similarly, we can calculate for Finance = 25 Hosts 


Using 192.168.1.192 to 192.168.1.255 
Subnet Mask 255.255.255.192 
2 h -2 > Req. of Hosts 
= 2 h -2 >25 
= 2 5 -2 >25 
= 32 - 2 = 30 hosts/subnet 


Customized subnet mask = 


255. 255. 255. 192 

11111111. 11111111. 11111111. 11000000 

. 11100000 

255. 255. 255. 224 
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• For Marketing = 10 Hosts 

Using 192.168.1.224 to 192.168.1.255 with Subnetmask 255.255.255.224 

• If we calculate, then we will get customized subnet mask 255.255.255.240 and Range 
as follows 
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■ IT 

■ Sales 

■ Finance 

■ Marketing 
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Some Important Values 
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Example - 1 : Requirement of subnet is 14? 


Class C : 192.168.1.0 
Requirement of Subnet 
2 n > Req. of Subnet 
= 2 4 > 14 

= 16 > 14 

= 16 Subnet 

No. of Hosts/subnet 

= 2 h - 2 (-2 is for Network ID & Broadcast ID) 

= 2 4 - 2 
= 16-2 
= 14 Hosts/Subnet 
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Example - 1 (Continued...) 
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Customized Subnet Mask = 



11111111. 


r 


255. 

11111111. 




r 


255. 

11111111. 




240 

_A_ 


11110000 


& & * 


% 


Range of Networks 
Network ID 


Broadcast ID 


192.168.1.0 

192.168.1.16 

192.168.1.32 

192.168.1.48 


192.168.1.15 

192.168.1.31 

192.168.1.47 

192.168.1.63 



192.168.1.224 192.168.1.239 

192.168.1.240 192.168.1.255 
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Example - 1 (Continued...) 



r fTTP ^ 

Tl 


If you convert 4 Host Bits to Network Bits 
16 Subnet & 14 Hosts/Subnet 


Customized Subnet Mask 
255.255.255.240 

Subnet Range 

192.168.1.16 to 192.168.1.31 
192.168.1.32 to 192.168.1.47 
192.168.1.48 to 192.168.1.63 
192.168.1.64 to 192.168.1.79 

192.168.1.224 to 192.168.1.239 
192.168.1.240 to 192.168.1.255 




Example - 2 : Requirement of Hosts is 2 ? 


ZOOM 




Class C : 192.168.1.0 
Requirement of Host 

2 h -2 > Req. of Host 

= 2 2 - 2 > 2 (-2 is for Network ID & Broadcast ID) 

= 4-2 

= 2 Hosts/Subnet 

No. of Subnets 
= 2 n 
= 2 6 
= 64 

= 64 Subnet 
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Example - 2 (Continued...) 


Customized Subnet Mask = 
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255. 


255. 


255. 


252 


11111111. 

Range of Networks 
Network ID 
192.168.1.0 
192.168.1.4 
192.168.1.8 
192.168.1.12 


11111111. 


11111111 . 


Broadcast ID 

192.168.1.3 

192.168.1.7 

192.168.1.11 

192.168.1.15 


<*> * 


11111100 


192.168.1.248 

192.168.1.252 


192.168.1.251 

192.168.1.255 



Example - 3 : Requirement of Networks is 4 ? 
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Class B : 172.16.0.0 
Requirement of Subnet 

2 n > Req. of Subnet 
= 2 2 >4 

= 4 =4 

= 4 Subnet 

No. of Host 

= 2 h - 2 (-2 is for Network ID & Broadcast ID) 
= 2 14 - 2 
= 16384-2 

= 16382 Hosts/Subnet 
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Example -3 (Continued...) 


• Customized Subnet Mask = 


ZOOM 

^TECHNOLOGIES 


'J 


255. 



11111111. 


255. 



11111111. 


Range of Networks 

Network ID 
172.16.0.0 

172.16.64.0 

172.16.128.0 

172.16.192.0 


r 


192. 

JL 




^yoooooo. 



00000000 


Broadcast ID 

172.16.63.255 

172.16.127.255 

172.16.191.255 

172.16.255.255 



Example - 

4 : Requirement of Hosts is 126 ? 

ZOOM I 

Class B 

: 172.16.0.0 


Requirement of Hosts 


= 

2 h -2 > Req. of Host 


= 

2 7 - 2 > 126 (-2 is for Network ID & Broadcast ID) 


= 

128-2 


= 

126 Hosts/Subnet 


No. of Subnets 


= 

2 n 


- 

2 9 


- 

512 


- 

512 Subnets 
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Example -4 (Continued...) 


Customized Subnet Mask = 
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255. 


255. 


255. 


128 


lllllin ilium. 

Range of Networks 

Network ID 

172.16.0. 0 

172.16.0. 128 
172.16.1.0 
172.16.1.128 


11111111 . 


10000000 


172.16.255.128 


Broadcast ID 

172.16.0. 127 

172.16.0. 255 
172.16.1.127 
172.16.1.255 



172.16.255.255 
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A co-operate network is having 100 PC 


Co-operate - 192.168.1.0/24 

- Marketing 

- Sales 
-Accounts 

- H/R 

- Training 

Administrator's requirement : Inter-department communication should not be 
possible ? 

Best Solution is : 

FLSM i.e. Subnetting 
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Scenario (...continued) 


* Now we are also having sub departments 


CO-OPERATE NETWORK 

- MARKETING 

- SALES 
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t Purchase 
Stock 
ACCOUNTS 
- Billing 
- Salary 
- Loans 
- Stationary 
- Tax 
H/R 

- Interview 
- Public relation 
- Finance 



Scenario (...continued) 
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Administrator does not want inter-department communication in the sub departments ? 


Answer : You will use the subnet range to further divide it into smaller ranges, this time 
its Subnetting of a Subnet i.e. VLSM. 
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Calculation of FLSM 


Class C : 192.168.1.0 
Requirement of Subnet 

2 n > Req. of Subnet 
= 2 3 >5 

= 8 

= 8 Subnet 

No. of Hosts/subnet 

= 2 h - 2 (-2 is for Network ID & Broadcast ID) 

= 2 5 - 2 

= 32-2 

= 30 Hosts/Subnet 
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(Continued...) 


Customized Subnet Mask = 
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224 


/ v 

11100000 


Range of Networks 

Network ID 


Broadcast ID 


192.168.1.0 

192.168.1.32 

192.168.1.64 

192.168.1.96 

192.168.1.128 

192.168.1.160 

192.168.1.192 

192.168.1.224 


192.168.1.31 

192.168.1.63 

192.168.1.95 

192.168.1.127 

192.168.1.159 

192.168.1.191 

192.168.1.223 

192.168.1.255 



0 


62 








Assigning of the Ranges 
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CO-OPRATE NETWORK 
MARKETING 
SALES 

Purchase 
Stock 
ACCOUNTS 

- Billing 

- Salary 

- Loans 

- Stationary 

- Tax 
H/R 

Interview 
Public relation 
Finance 
-I TRAINING 


E 




TECHNOLOGIES 
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192.168.1.32 - 1.63/27 
192.168.1.64 - 1.95/27 

192.168.1.96 - 1.127/27 


192.168.1.128 - 1.159/27 


192.168.1.160 - 1.191/27 



Calculation of VLSM for CISCO Dept. 
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Class C : 192.168.1.64 
Requirement of Subnet 
= 2" > Req. of Subnet 

= 2 1 > 2 

= 2 

= 2 Subnet 

No. of Host 

= 2 h - 2 (-2 is for Network ID & Broadcast ID) 
= 2 4 - 2 
= 16-2 
= 14 Hosts/Subnet 
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VLSM (Continued...) 


Customized Subnet Mask = 


255. 


255. 


11111111. 


11111111 . 


255. 


240 


11111111. 


11110000 


<^<0* ^ s*> 


Range of Networks 
Network ID 
192.168.1.64 
192.168.1.80 


Broadcast ID 
192.168.1.79 
192.168.1.95 
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Assigning of the Ranges 


ZOOM 


V 


TECHNOLOGIES, 


u 


CO-OPERATE NETWORK 
-i MARKETING 
- SALES 

|- Purchase 

- Stock 
H ACCOUNTS 

- Billing 

- Salary 

- Loans 

- Stationary 

- Tax 




Interview 

- Public Relation 

- Finance 


192.168.1.32 - 1.63/27 
192.168.1.64 - 1.95/27 
^ 192.168.1.64 - 1.79/28 

192.168.1.80 - 1.95/28 
+ 192.168.1.96 - 1.127/27 


192.168.1.128 - 1.159/27 


192.168.1.160 - 1.191/27 
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Calculation of VLSM for Firewall Dept. 


ZOOM 

^TECHNOLOGIES 


'J 


Class C : 192.168.1.96 
Requirement of Subnet 

2 n > Req. of Subnet 
= 2 3 > 5 

= 8 

= 8 Subnet 

No. of Host 

= 2 h - 2 (-2 is for Network ID 8i Broadcast ID) 

= 2 2 - 2 

= 4-2 

= 2 Hosts/Subnet 



VLSM (Continued...) 


Customized Subnet Mask = 
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11111111. 



11111111. 


Range of Networks 

Network ID 
192.168.1.96 
192.168.1.100 
192.168.1.104 
192.168.1.108 
192.168.1.112 
192.168.1.116 
192.168.1.120 
192.168.1.124 


255. 

— * * 

liiiim. 


Broadcast ID 

192.168.1.99 

192.168.1.103 

192.168.1.107 

192.168.1.111 

192.168.1.115 

192.168.1.119 

192.168.1.123 

192.168.1.127 


252 


11111100 
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Assigning of the Ranges 
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CO-OPERATE NETWORK 
-i MARKETING 
- SALES 

|- Purchase 
- Stock 


AGCOUNTS 


- Billing 

- Salary 

- Loans 

- Stationary 

- Tax 


192.168.1.32 - 1.63/27 

192.168.1.64 - 1.95/27 
4 192.168.1.64-1.79/28 

+ 192.168.1.80 - 1.95/28 
192.168.1.96-1.127/27 

■4 192.168.1.96 - 1.99/30 
^ 192.168.1.100 - 1.103/30 
■4 192.168.1.104 - 1.107/30 
^ 192.168.1.108 - 1.111/30 
192.168.1.112 - 1.115/30 
192.168.1.128 - 1.159/27 



Interview 
Public Relation 
Finance 



192.168.1.160 - 1.191/27 



Calculation of VLSM for Solaris Dept. 
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Class C : 192.168.1.128 
Requirement of Subnet 
= 2" > Req. of Subnet 

= 2 2 > 3 

= 4 

= 4 Subnet 

No. of Host 

= 2 h - 2 (-2 is for Network ID & Broadcast ID) 
= 2 3 - 2 
= 8-2 

= 6 Hosts/Subnet 
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VLSM (Continued...) 


• Customized Subnet Mask = 


255. 



11111111. 


255. 



11111111. 


Range of Networks 
Network ID 

192.168.1.128 
192.168.1.136 
192.168.1.144 
192.168.1.152 


255. 



11111111. 


r 


248 

_A_ 




11111000 


$ * * ^ * 


Broadcast ID 

192.168.1.135 

192.168.1.143 

192.168.1.151 

192.168.1.159 
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Assigning of the Ranges 
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CO-OPERATE NETWORK 
-i MARKETING 
- SALES 

|- Purchase 

- Stock 
H AGCO U NTS 

- Billing 

- Salary 

- loans 

- Stationary 

- Tax 




Interview 

- Public Relation 

- Finance 


192.168.1.32 - 1.63/27 
192.168.1.64 - 1.95/27 
^ 192.168.1.64 - 1.79/28 

192.168.1.80 - 1.95/28 
192.168.1.96 - 1.127/27 

-4 192.168.1.96 - 1.99/30 
-t 192.168.1.100 - 1.103/30 
^ 192.168.1.104 - 1.107/30 
■4 192.168.1.108 - 1.111/30 
^ 192.168.1.112 - 1.115/30 

192.168.1.128 - 1.159/27 

192.168.1.128 - 1.135/29 
192.168.1.136 - 1.143/29 
^ 192.168.1.144 - 1.151/29 
192.168.1.160 - 1.191/27 
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Slash notation 
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Slash notation 

subnet mask 

/8 

255.0.0.0 

/12 

255.240.0.0 

/16 

255.255.0.0 

111 

255.255.252.0 

/24 

255.255.255.0 
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LAN - Different Network Communication 
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LAN - Different Network Communication 
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ROUTING TABLE 


192.168.1.0/24 is directly connected, EthernetO 

192.168.2.0/24 is directly connected, Ethernetl 


192.168.2.2/24 


192.168.2.254 

El 


192.168.1.254 

.. . - EO 


192.168.2.3/24 


192.168.2.4/24 


192.168.1.4/24 


S _fT7Tl_ 

f iTl fl 

I mono 


Source IP & Port 




Destn Port 


LAN - Different Network Communication 
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CGIEl 


ROUTING TABLE 


C 192.168.1.0/24 is directly connected, EthernetO 

C 192.168.2.0/24 is directly connected, Ethernetl 


192.168.2.254 ■n 


192.168.1.254 

EO 


192.168.2.2/24 


192.168.1.4/24 


192.168.2.3/2< 


K 

Source IP 8i Port 

JATA 

tp 

Destination IP 8i Port 


192.168.1.1 . 5000 

repiy 
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LAN - Different Network Communication 
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Router 


ZOOM I 

^TECHNOLOGIES^ 

• Router is an internetworking device. 

• It enables communication between two or more different logical networks. 

• It is a Network Layer (layer 3) device. 

• It comes from the word "ROUTE". Hence it is also a device that finds the best route 
(path) for networks. 

• The IP of Router is the default gateway for all devices in LAN. 



Type of Routers 


There are two type of Routers 
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• Hardware Routers: 

- Cisco, Juniper, Multicom, HP, Dlink, Maipu and many more... 

• Software Routers: 

- Microsoft Server, Linux Server 
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Functions of a Router 


Inter-network Communication 
Best Path Selection 
Packet Switching 
Packet forwarding 



Internet User 
61.0.0.10 
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Source IP & Port 
Destination IP & Port 


DATA 



www.yahoo.com 

191.0.0.10 
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Hardware Routers 


Fixed Router 
Modular Router 
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Fixed Router 
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Modular Router 
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Cisco 1700 Modular Router 


WIC - Wan Interface Card 


Cisco 2600 Modular Router 



2800 Series 


ZOOM 


V 


TECHNOLOGIES, 


U 




0 


75 









Types of routers 
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Attachment Unit Interface 


* Attachment Unit Interface (AUI) is used to connect the Router to the LAN 

* It is also called as the Ethernet interface. 

* AUI is an DB 15 pin female interface. 

* Transceiver is used to connect AUI port to LAN HUB /Switch. 

* Transceiver converts DB-15 signal to RJ-45. 
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Transceiver 
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Other LAN Interfaces - RJ-45 ports 
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• Routers have RJ-45 ports to connect the Router to the LAN. 

• The speed of the RJ-45 ports can be 

- 10 Mbps Ethernet 

- 10/100 Mbps Fast Ethernet 

- 10/100/1000 Mbps Gigabit Ethernet 




LAN Connectivity 
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An IP address has to be assigned to this interface. It should be in the same network as that of the 
LAN. This IP address is the default gateway address for all LAN systems. 


Straight Cable 



EQ 

192.168.1.1/24 


Straight Cable 


Switch 



LAN - 192.168.1.0/24 
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LAN Connectivity 
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Cross Cable 



EO 

192.168.1.1/24 



LAN - 192.168.1.0/24 



Serial Port 
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• Serial port is used for WAN Connectivity. 

* Serial port are available as 

- 60 pin female connectors. 

- Smart Serial 26 pin female connectors. 







V.35 cable is used to connect the serial port of the router to the leased line modem 
(CSU/DSU). 
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High-speed WAN interface cards (HWICs) provide connectivity to a Wide Area Network 



Console Port 


ZOOM 


V 


TECHNOLOGIES, 


') 


• It is a local administrative port. 

• It is a RJ-45 Port. 

• It is used for initial configuration and advance troubleshooting. 

• Note : It is the most important and sensitive port on the Router. 



DB-9 Convertor Console cable 
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Console Connectivity 
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Console Port 


RJ-45 


Rollover 

Cable 


RJ-45 to DB-9 
Converter 


Computer 


Auxiliary Port 
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* It is a remote administrative port. 

* Used for remote administration / configuration. 

• Its an RJ-45 port. 

• A console / rollover cable is used to connect the auxiliary port to a dial-up modem. 
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Roll over Cable 
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One End 

Other End 

Orange-white 

Brown 

Orange 

Brown-white 

Green-white 

Green 

Blue 

Blue-white 

Blue-white 

Blue 

Green 

Green-white 

Brown-white 

Orange 

Brown 

Orange-white 



Auxiliary Connectivity 
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Auxiliary Port — 


- RJ-45 - 
Connector 





0 


81 








ZOOM 

^^TECHNOLOGIES, 


u 


Interfaces of a Router 


• LAN Interface 

- Attachment Unit Interface (AUI) 10 Mbps 

- RJ 45 Ethernet / FastEthernet / GigabitEthernet 

• WAN Interface 

- Normal Serial Interface 

- Smart Serial Interface 

• Administrative Interface 

- Console 

- Auxiliary 
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Internal Components of Router 
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• ROM (Read only Memory) 

- It contains a bootstrap program which searches and loads the operating system. 

- It is similar to the BIOS of a PC. 

- It also contains a ROMMON for advance troubleshooting. 

• Flash memory 

- The Internetwork Operating System (IOS) is stored here. 

- IOS is a Cisco proprietary operating system. 



Internal Components of Router 
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• NVRAM (Non Volatile Random Access Memory) 

- NVRAM is similar to a hard disk. 

- It is also known as permanent storage. 

- The startup configuration is stored here. 

• RAM (Random Access Memory) 

- It is also called as the main memory. 

- It is a temporary storage. 

- The running configuration is stored here. 
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Internal Components of Router 
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Power Supply 


Flash SIMM Boot ROM RAM DIM Ms CPU 



BOOT Sequence 
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Power On Self Test - checks the hardware 


ROM loads Bootstrap program and searches for the 

IOS 






IOS from Flash is loaded 






The startup configuration is loaded from the 

NVRAM 


Boot process is completed as everything is loaded into the 

RAM 
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Console Connectivity 
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Console Port + 


Rollover 

Cable 


RJ-45 to DB-9 
Converter 


Computer 
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Console Connectivity 
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Cisco Routers & Switches does not have any default IP address or Configuration, hence 
require to use the Console port for Initial Configuration. 

Require physical connection between the Cisco Router/Switch and PC via console 
cable. 




Emulation Software 


WINDOWS 
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• Hyper-terminal / Putty / Teraterm 


LINUX 

• Minicom -s 



0 


86 







Initial Configuration 
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Accessing Router 
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10.0.0.1/8 





Computer IP Address 
10.0.0.10 




CCIE 


m 

n 


C C N A 
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• Accessing router via console from Microsoft Windows Computer 

• Start a terminal emulator application, such as PUTTY.exe 

• Select Serial option and set speed to 9600 


Click Open 


PuTTY Configuration 


Category 


0- Session 

Loggrng 
0- Terminal 

Keyboard 

Bed 

features 

0 Window 

Appearance 
Behaviour 

I ranslaiion 
Selection 

Colours 
Id' Connection 
Data 
J— Proxy 
Telnet 

i Rtooln 

l±J SSH 
S vital 


Basic options for your 


PuTTY session 


Speedy the destination you want to connect to 
Serial line Speed 

9GOO 


COM 1 

Connection type ' 

Raw T elnet 


Rlogin 


SSH 


o Serial 


Load, eave or delete a stored session 
Saved Sessions 



Oo8v window on exit. 
Always Never 


u Only on dean exit 
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Types of WAN Technologies 
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Dedicated service 
- Leased Line 

• MLLN (Managed Leased Line Networks) 
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• Circuit switching 

- PSTN (Public Switched Telephone Networks) 

- ISDN (Integrated Services Digital Networks) 

• Packet Switching 

- Frame-relay 

- MPLS (Multi Protocol Label Switching) 

- ATM (Asynchronous Transfer Mode) 

• Broadband 

- DSL 

- Cable Internet 
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Hyderabad 

MUX 


Bangalore 

MUX 


TELCO 


*> Pair of-" 
Copper wire 


Switch 


Switch 
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Hyderabad 

Office 


Bangalore 

Office 


Wan Connectivity 


V.35 Cable 


V.35 Cable 


LAN - 192.168.2.0/24 


LAN - 10.0.0.0/8 


Wan Connectivity Representation 
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E0/0 

S0/0 


192.168.2.1/24 

172.16.0.1/16 


G0/0 

S0/0/1 


10.0.0.1/8 

172.16.0.2/16 


























Device Classification 
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r 


DCE I 

DTE 



r 


• Data Communication Equipment 

• Data Termination Equipment 


• Generate clocking 

• Accept clocking 


(i.e. Speed) 

(i.e. Speed) 


• Master 

• Slave 


• Example of DCE:- CSU/DSU 1 

• Example of DTE:- Router 


L A 

L 



s rrrn 

I JQOt - 

I mono 


Serial - back to back cable 


ZOOM 


\ 

* When the distance between two Routers is short, a special V.35 Back to Back Cable is 
used to replace the copper wire, CSU/DSU and MUX. 

* For data communication using back to back Serial cable, one end has to be a DCE and 
the other has to be a DTE. 


TECHNOLOGIES, 


u 



9 



ROUTER 1 


ROUTER 2 
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Encapsulation 


• Encapsulation is the process of adding a new Header or Trailer to data. 
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* The header and trailer contains information which is needed for proper transportation 
of the data. 

• There are different types of WAN Encapsulation: 

- PPP 

- HDLC 

- Frame Relay 



Wan Encapsulation 


ZOOM 


V 


TECHNOLOGIES, 


u 


PPP I HDLC 




• Point to Point Protocol • High level Data link Control 

• Open Standard Protocol • Vendor proprietary Protocol 

• Supports Authentication • No Support for Authentication 

• Supports Compression • No Support for Compression 
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Wan Interface Configuration 



Interface IP Address / Mask 


192.168.2.1/24 

172.16.0. 1/16 

172.18.0. 2/16 




Interface IP Address / Mask 



G0/0 

S0/0/0 

S0/0/1 


10.0.0.1/8 

172.17.0. 1/16 

172.16.0. 2/16 


192.168.3.1/24 

172.18.0. 1/16 

172.17.0. 2/16 


ZOOM 




To check DCE/DTE 

Router# Show controllers Serial < no. > 


Serial Interface Configuration 
Router(config)# interface Serial <no.> 
Router(config-if)# ip address < ip > < Subnet mask > 
Router(config-if)# no shutdown 
Router(config-if)# clock rate < bandwidth > 
Router(config-if)# encapsulation < HDLC/PPP > 


Verification 

Router# Show interface Serial <no. > 


ICC I El 
G C N f 
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IP Routing 
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Routing is the process of moving IP packets from one network to another network. 
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* Routing involves two basic activities: 

- Determining best paths. 

- Forwarding packets through these paths. 



0 


94 






IP Routing 
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Internet User 


www.yahoo.com 



Routing Network Diagram 


Branch Office 

so/o 




EO/O 


/ = \ 

Switch 




Interface 

IP Address /Mask 

EO/O 

192.168.2.1/24 


so/o 


172.16.0.1/16 
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Head Office 

SO/O/l 




Interface 


GO/O 

SO/O/l 


GO/O 


Switch 


I 




IP Address /Mask 


10.0.0.1/8 

172.16.0.2/16 
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Conditions for Routing 
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• The Head office router's Ethernet interface should be in the same network as the Head 
office LAN and similarly on Branch office side, the router's Ethernet interface should 
belong to the same network as the branch office LAN. 

• The serial interface between the head office and the branch office should be in same 
network. 

• Head office LAN and Branch office LAN should be in different network. 

• All interfaces of a Router should be in different network. 



Types of Routing 
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• Static Routing 


• Default Routing 

* Dynamic Routing 
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Static Routing 
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• Static routes are configured, maintained and updated by network administrator 
manually. 


* Administrator should know the destination IP network for configuration. 

• Administrative distance for Static Route is 1. 



Administrative Distance (AD) is the “reliability” of 
the routing protocol. AD range is 0-255, lesser the 
administrative distance, higher the priority 
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Static Routing 
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192.168.2.1/24 

172.16.0. 1/16 

172.18.0. 2/16 





Interface 

IP Address / Mask 



G0/0 

S0/0/0 

S0/0/1 


10.0.0.1/8 

172.17.0. 1/16 

172.16.0. 2/16 


Interface 

IP Address /Mask 

F0/0 

192.168.3.1/24 

so/o 

172.18.0.1/16 

S0/1 

172.17.0.2/16 


Static Route Configuration 
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Static Route configuration 

* Router(config)# ip route < Destination network ID > < Destination 
Subnet mask > < Exit Interface type > < Exit interface no. > 


Or 


Router(config)# ip route < Destination network ID > < Destination 
Subnet mask > < Next Hop IP address > 


Verification 


Router# Show ip route 


ICCIEl 
c c n p 
G C N A 
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Advantages and Disadvantages of Static routing 
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Advantages 

Disadvantages 

Secured 

No Automatic Updates 

Reliable 

Need of Destination network ID for the 
configuration 

Faster 

Administrative work is more 

No wastage of bandwidth 

Used in Small networks 
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Advantages of Dynamic routing 
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• Changes in the network topology are updated dynamically 

• Only the directly connected network information is required for the configuration 

• Administrative work is reduced 

• Used for medium and large Networks 



Types of Dynamic Routing Protocols 
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• Distance vector 

- RIP (Routing Information Protocol) 

- IGRP (Interior gateway routing protocol) 

• Advanced distance vector 

- EIGRP(Enhanced Interior gateway routing protocol) 

• Link-state 

- OSPF (open shortest path first) 

- IS-IS (intermediate system to intermediate system) 
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Routing Information Protocol 
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• Distance vector protocol 

• It is open standard protocol 

• Uses Bellmen-ford Algorithm 

• Classfull routing protocol 

• Updates are periodically broadcasted using IP address 255.255.255.255 

• Complete routing table sent as an update 

• Each Update can contain maximum of 25 routes 

• Administrative Distance is 120 

• Metric is Hop count 

• Maximum hop count supported is 15 

• Load balancing on 4 equal paths by default (maximum 16 equal paths ) 

• Also known as "Routing by Rumor" 
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RIP Timers 


• Update Timer : 30 sec 

Time between two consecutive updates 

• Invalid Timer : 180 sec 

Time a router waits to hear an update from the neighbor 

The route is marked as unreachable if there is no update for this time period 

• Flush Timer : 240 sec 

Time after which the invalid route is removed from the routing table 
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Disadvantages of RIP 
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* More Bandwidth is utilized for sending the updates. 

* Does not consider the bandwidth in metric calculations, uses only hop count 

• Slow convergence 

• Formation of routing loops 



0 


102 








Routing loops 


• Routing loops are formed due to the default behavior of RIP 

• Complete routing tables are exchanged 

• Slow convergence 

• No verification of updates received 
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Routing loop avoidance 
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Built in Mechanisms to avoid switching loops 

• Split Horizon 

A route learnt through an interface is never advertised back out of that same interface 

• Route poisoning 

The route is marked as 16 hops 

It is a mechanism to inform regarding unreachable route to neighbor 

• Poison reverse 

Violating split horizon rule, sending the update through an interface from where it is 
being received, only in a case when network is unreachable (16hops) 

• Hold down timer : 180 sec 

The router does not accept any update for the invalid route for this time period 

• Flash update ( Triggered update ) 

Change in the network topologies causes the router to send the update immediately 
without waiting for the update timer to get over 


U 
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Comparison between RIPvl and RIPv2 
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RIP vl I 

I RIP v2 

► H 

• Ciassfull routing protocol 

► ^ 

• Classless routing protocol 

• Does not advertise subnet mask 

• Advertises the subnet mask 

information in routing update 

information in routing update 

• It works with broadcasting 

• It works with multicasting 

( 255.255.255.255 ) 

( 224.0.0.9 ) 

* It does not support Authentication 

* It supports Authentication 



RIP configuration 
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RIP configuration 

Router(config)# ip routing 
Router(config)# router rip 
Router(config-router)# network < Network ID > 


Verification 


Router# Show ip route 


To check the logs 


Router# debug ip rip 
Router# terminal monitor 
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Enhanced Interior Gateway Routing Protocol 


• Advance Distance vector routing protocol 

• It is open standard protocol, was Cisco proprietary 

• Uses DUAL (Diffusion Update Algorithm) 

• Classless routing protocol 

• Updates are sent through Multicast IP address (224.0.0.10 ) 

• Incremental Updates and Triggered updates 

• Administrative distance is 90 

• Metric : Composite Metric 

- Bandwidth, delay, load, reliability and MTU 

- Bandwidth and delay is used by default 


ZOOM 
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EIGRP 
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• Maximum hop count supported is 255 (Default is 100) 

• Hello packets are sent every 5 seconds 

• Supports multiple Routed Protocols - IP, IPX and Apple Talk protocols 

• Support equal and unequal cost load balancing (default 4 paths and maximum 16 
equal or unequal path) 

• Fast Convergence to topology changes 



EIGRP Tables 


ZOOM 


V 


TECHNOLOGIES, 


u 


• Neighbor Table 

- Contains information about directly connected neighbors. 


• Topology Table 

- Contains entries for all destinations, along with the feasible distance and the 
advertised distance. 

- Contains the successors. 

- Contains feasible successor if any. 

• Routing Table 

- Entries with the best path for each destination from the Topology table are moved 
into the Routing Table 
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EIGRP Terminology 
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• Feasible Distance FD : 

- Feasible distance (FD) is the metric of the best route to a destination, including the 
local link distance. 

- Feasible distance = advertised distance + local link distance (of the best path) 

• Advertised Distance AD: 

- The distance of a route as advertised by the neighbor. It does not include the local 
link distance. 

• Successor : 

- The neighbor with best distance to the destination. 

• Feasible Successor : 

- The neighbor with second best distance to the destination, which meets this criteria: 
advertised distance should be less than the feasible distance (AD <FD) 
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EIGRP - Neighbor Table 



0 


107 







EIGRP - Topology Table 
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NEIGHBOR 

Neighbor 

TABLE (Router A) 

Interface 

B 

SO 

D 

S2 

E 

SI 


TOPOLOGY TABLE (Router A) 


Network 

Neighbor 

TD 

AD 

FD 


10.0.0.0/8 

via B 

30 

10 

30 

S 


via E 

35 

25 


FS 


via D 

45 

35 






EIGRP - Routing Table 
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NEIGHBOR TABLE (Router A) 

Neighbor 

Interface 

B 

so 

D 

S2 

E 

SI 


TOPOLOGY TABLE (Router A) 
Network Neighbor TD AD FD 


10.0.0.0/8 via B 

30 

10 

30 S 

via E 

35 

25 

FS 

via D 

45 

35 



ROUTING TABLE (Router A) 

D 10. 


.0/8 [90/30] via B, 01:36, SerialO 
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Autonomous System 
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* An autonomous system is a collection of networks or routers under a common 
administrative policy 


• Autonomous systems are identified using numbers 

• Autonomous system number ranges from 0 - 65535 

- Public : 1-64511 

- Private : 64512-65535 



Routing Protocol Classification 
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IGP I EGP 



• Interior Gateway Protocol I • Exterior Gateway Protocol 


• Routing protocols used within an • Routing protocol used between 

Autonomous system different Autonomous systems 

• Ex: RIP, IGRP, EIGRP, OSPF, IS-IS • Ex: Border Gateway Protocol is 

extensively used as EGP 
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IGP and EGP 
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IGP IGP 


RIP, OSPF, IGRP, EIGRP RIP, OSPF, IGRP, EIGRP 



ABC - AS 100 XYZ - AS 200 

- IGPs operate within an autonomous system 

- EGPs connect different autonomous systems 


f _m n_ 
I mono 




l Interface 

IP Address / Mask 

E0/0 

192.168.2.1/24 


so/o 

SO/1 

Lol 

Lo2 

Lo3 


172.16.0. 1/16 

172.18.0. 2/16 
16.1.1.1/24 
16.1.2.1/24 
16.1.3.1/24 


Switch 



Interface IP Address / Mask 



Interface 

IP Address /Mask 

I Interface 1 

IP Address / Mask | 

G0/0 

10.0.0.1/8 

Lol 

17.1.1.1/24 

SO/O/O 

172.17.0.1/16 

Lo2 

17.1.2.1/24 

S0/0/1 

172.16.0.2/16 

Lo3 

17.1.3.1/24 


F0/0 

S0/0 

S0/1 

Lol 

Lo2 

Lo3 


192.168.3.1/24 

172.18.0. 1/16 

172.17.0. 2/16 
18.1.1.1/24 
18.1.2.1/24 
18.1.3.1/24 
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Eigrp configuration and Verification Syntax 


EIGRP configuration 
Router(config)# ip routing 
Router(config)# router eigrp <As no. > 
Router(config-router)# network < Network ID > 


Verification 

To check Routing Table 

• Router # show ip route 
To check Neighbor Table 

• Router # show ip eigrp neighbor 
To check Topology Table 

• Router # show ip eigrp topology 


iccni 
c c n p 
e c n k 


Summarization 
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• Route summarization takes a set of contiguous networks or subnets and groups them 
together using a shorter subnet mask. 


* The advantages of summarization are that it reduces the number of entries in the 
route table. 
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OTHER EIGRP FUNCTIONS 


• EIGRP supports Auto-summarization and Manual summarization. 

• EIGRP support unequal-cost load-balancing 

• EIGRP supports passive-interface 
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EIGRP summarization 
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EIGRP supports summarization at any location in the internetwork. 

By default EIGRP has auto-summarization enabled. 

Summarize the routes that are advertised through classfull network boundaries. 


To disable auto-summarization 
Router(config)# router eigrp <As. no.> 
Router(config-router)# no auto-summary 
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EIGRP Unequal Cost Load balancing 
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• Every routing protocol supports equal cost path load balancing. 

• EIGRP also support unequal cost path load balancing. 

• To configure unequal cost load balancing, next available paths should be feasible 
successors. 

• Unequal cost load balancing can be configured by using "Variance' 7 

• Default Variance value is 1 (Equal cost load balancing) 



To configure variance 


Router(config)# router eigrp <As. no.> 
Router(config-router)# variance <1-128> 


V ✓ 



EIGRP variance 


SO/l 


Interface IP Address/ Mask 


192.168.2.1/24 

172.16.0. 1/16 

172.18.0. 2/16 





Interface 

IP Address / Mask 

G0/0 

10.0.0.1/8 


S0/0/0 

S0/0/1 


172.17.0. 1/16 

172.16.0. 2/16 
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so/o 



Interface IP Address / Mask 


192.168.3.1/24 

172.18.0. 1/16 

172.17.0. 2/16 
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EIGRP Passive interface 
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• The interface can be configured as passive , for stopping the hellos and Updates. 

• The passive interface cannot send any hellos over the interface , but it can receive 


hellos. 



To configure passive interface 


Router(config)# router eigrp <As. no.> 

Router(config-router)# passive-interface interface type> <no.> 
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Open Shortest Path First 


• Link State Protocol 

• Open standard 

• Classless routing protocol 

• Uses Dijkstra (Shortest Path First (SPF)) Algorithm 

• Updates are sent through Multicast IP address 224.0.0.5 and 224.0.0.6 

• Supports Triggered Updates and incremental updates 

• Administrative distance is 110 

• Metric = Cost = 10 8 /Bandwidth in bps (CISCO) 
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OSPF (contd..) 
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• Hello packets are sent every 10 seconds, Dead interval 40 sec 

• OSPF sends updates (LSAs) when there is a change to one of its links 

• LSAs are additionally refreshed every 30 minutes. 

• Unlimited Hop Count 

• Designed to scale and support large / Enterprise networks 

• Hierarchical network design using Areas 

• One area has to be designated as Area 0 

• Area 0 is called the Backbone Area 
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Router ID 


• Router ID is used to identify the Router. 

• The highest IP assigned to an active physical interface is the Router ID. 
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If logical interface is configured then the highest IP assigned to a logical interface 
(loopback) is the Router ID. 



OSPF Neighbor States 
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Neighbor State 
down 


Neighbor State 
down 


RID l.l. l.l , nit 



2-way 

DR Election, 

If needed * 

ExStart 


A to B Links (comes up..) 

Init 

Hello, Seen (null), RID l.l.l.l 
► 

Hello, Seen (l.l.l.l), RID 2.2.2.2 2-way 
< 

Hello, Seen (l.l.l.l), RID 2.2.2.2 


RID 2. 2. 2. 2 



Hello, DR=z.z.z.z 


DD (LSA Headers) 


DR Election, 
If needed 


Exchange 


DD (LSA Headers) 


DD (LSA Headers) 


ExStart 

Exchange 


Loading ^ 


LSR, LSU, LSAck (Full LSAs) 


Loading 
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OSPF Terminology 


• Neighbor 

- Routers that share a common link become neighbors. 

- Neighbors are discovered by Hello Packets. 

- To become neighbors the following should match 

• Area ID 

• Network ID and Subnet Mask 

• Hello and Dead Intervals 

• Authentication 

• Adjacencies 

- Adjacencies are formed once neighbor relation is established. 

- In Adjacencies the database details are exchanged. 
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OSPF Tables 
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• It maintains three tables : 


• Neighbor Table 

- Neighbor table contains information about the directly connected OSPF neighbors 
forming adjacency. 

• Database Table 

- Database table contains information about the entire view of the topology with 
respect to each router. 

• Routing Table 

- Routing table contains information about the best path calculated by the shortest 
path first algorithm in the database table. 
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OSPF - Neighbor Table 
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OSPF- Database Table 
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Router B 
Router C 


Router C 


Router E 
Router B 
Router C 


Router C 


DATABASE TABLE (Router A) 


1.0/8 


NEIGHBOR TABLE (Router A) 
Neighbor Interface 


llnriatp 
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OSPF - Database Table 
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Wild Card Mask 


A wild card mask can be calculated using the formula 
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Global Subnet Mask 
Subnet Mask 


Wild Card Mask 

255.255.255.255 255.255.255.255 

255.255.255. 0 - 255.255.255.240 


0. 0. 0.255 0. 0. 0. 15 
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OSPF Single Area 




L \L 

w — \ 


j Interface 

IP Address/ Mask jj 

E0/0 

192.168.2.1/24 

so/o 

172.16.0.1/16 

S0/1 

172.18.0.2/16 
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Switch 



Interface 

IP Address / Mask 

F0/0 

192.168.3.1/24 


so/o 

SO/l 


172.18.0. 1/16 

172.17.0. 2/16 



Interface 

IP Address / Mask 

G0/0 

10.0.0.1/8 


S0/0/0 

S0/0/1 


172.17.0. 1/16 

172.16.0. 2/16 
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OSPF configuration 

Router(config)# ip routing 
Router(config)# router ospf < Process ID > 

Router(config-router)# network < Network ID > <Wildcard mask > 

area <area ID > 


Verification 

To check Routing Table 

* Router # show ip route 
To check Neighbor Table 

* Router # show ip ospf neighbor 
To check Database Table 

* Router # show ip ospf database 
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Multi Area 
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f rrrr 

i tTIfl 

I mono 


Interface 

IP Address /Mask 

G0/0 

10.0.0.1/8 



so/o/o 

S0/0/1 


172.17.0. 1/16 

172.16.0. 2/16 


OSPF in LAN 
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DR and BDR 
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• Designated Router (DR) 

- Designated Router is elected when ever OSPF routers are connected to the same 
multi-access networks. 

- This is done to reduce the number of adjacencies formed. 

- If there is a change in topology the initial router will only update the DR and BDR 
and no other router. The DR in turn will update the remaining routers. 

• Backup Designated Router (BDR) 

- This is a backup to the DR and will only receive updates but will not update the 
other routers. 

- If the DR goes down then the BDR will act as the DR. 



DR and BDR Elections 


DR and BDR Election is done by the Hello Packets 
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• The router with the highest OSPF priority will become the DR and the router with the 
second highest priority will become BDR 

• On all routers the default priority is 1 

• In that case, the router with the highest Router ID will become the DR and the Router 
with the second highest ID will become the BDR 

• Multicast address used for updating 

- Other routers to DR 4 224.0.0.6 

- DR to other routers 224.0.0.5 
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DR and BDR 
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To check DR/BDR status 

To check DR/BDR Status 

Router # show ip ospf neighbor 

To check the self status 

Router # show ip ospf interface ethernet < no. > 

To change the priority 

Router(config) # interface ethernet < no. > 
Router(config-if) # ip ospf priority < priority > 

For Election process 
• Router # clear ip ospf process 



OSPF Multi Area 
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My SPF Algorithm Is 
Running Too many 
times!!! 


I'm Receiving too many 
LSA! ! ! 


m Running out of memory 
because my routing table 
is to big!! 


ceiEl 
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Issue of Maintaining of large OSPF network 
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ABR and ASBR 


ZOOM 




TECHNOLOGIES, 


') 


• ABR (Area Border Router) 

An OSPF Router with interfaces connected to the backbone area and to other area 

* ASBR (Autonomous System Border Router ) 

A router that exchanges routing information with routers belonging 
other AS (Autonomous System) 
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Types of LSAs 
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LSA Types 

Name 

1 

Router LSAs 


2 Network LSAs 

3 Summary LSAs 



LSA Type - 1 
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• One Router LSA (type 1) for every router in an area 

- Includes list of directly attached links 

- Each link identified by IP prefix and link type 

• Identified by the router ID of the originating router 

• Floods within its area only; does not cross the ABR 
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LSA Type - 1 
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LSA Type - 2 
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• One Network (type 2) LSA for each transit broadcast or NBMA network in an area 
Includes Network ID, subnet mask and list of attached routers on that transit link 

• Advertised by the DR of the transit network 

• Floods within its area only; does not cross ABR 
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LSA Type - 2 
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LSA Type - 3 
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Type 3 LSAs are used to flood network information to areas outside the originating 
area (inter-area) 

contains network ID and subnet mask 
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• Advertised by the ABR of originating area 

• Regenerated by subsequent ABRs to flood throughout the autonomous system. 

• By default, routes are not summarized and there is one type 3 LSA for every subnet 
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LSA Type - 3 
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Disadvantages of OSPF 
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• Consumes More Memory and CPU processing time 

* Complex configuration 
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Access Control List 


* Access Control List provides network security. 

* It provides layer 3 and layer 4 security. 

• Controls the flow of traffic from one network to another. 

• Filters IP Packets (Packet Filtering Firewall) 
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ACL - Network Diagram 



LAN - 1 92.1 68.2.0/24 LAN - 1 0.0.0.0/8 LAN - 1 92.1 68.3.0/24 



Terminology 


• Deny : Blocking a network/subnet/host/service. 

• Permit : Allowing a network/subnet/host/service. 

• Source Address : The address from where the request starts. 

• Destination address : The address where the request ends. 

• Inbound : Traffic coming into the interface. 

• Outbound : Traffic going out of the interface. 
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Terminology 


• Protocols : IP (Internet Protocol) 

- TCP (Transmission control protocol) 

- UDP (User datagram protocol) 

- ICMP (Internet control messaging protocol) 

• Operators : 

- eq (equal to) 

- neq (not equal to) 

- It (less than) 

- gt (greater than) 

• Services : HTTP (80), FTP (20,21), TELNET (23), DNS (53), DHCP (67,68) 
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Wildcard Mask 
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• It's the inverse of the subnet mask, hence is also called as inverse mask. 

• A bit value of 0 indicates MUST MATCH (Check Bits). 

• A bit value of 1 indicates IGNORE (Ignore Bits). 

• Wildcard Mask for a host is 0.0.0.0 

• Wildcard Mask for Class A network is 0.255.255.255 

• Wildcard Mask for Class B network is 0.0.255.255 

• Wildcard Mask for Class C network is 0.0.0.255 
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Wild Card Mask 


* A wild card mask can be calculated using the formula : 
Global Subnet Mask 
- Subnet Mask 


Wild Card Mask 

E.g. 

255.255.255.255 255.255.255.255 

255.255.255. 0 - 255.255.255.240 


0. 0. 0.255 0. 0. 0. 15 
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Working of Access Control List 
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• Works in a sequential order from top to bottom. 

• If a match is found it does not check further. 

• There should be at least one permit statement. 

• An implicit deny blocks all traffic by default when there is no match (an invisible 
statement). 

• New entries are automatically added to the bottom. 

• Can have one access-list per interface per direction. 

• Removing of specific statement in a numbered access-lists is not possible. 
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Types of Access-List 
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Standard Access List 
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• The access-list number range is 1 - 99. 

• Can filter a network, subnet or host. 

• Two way communication is stopped. 

• All services are either blocked or allowed. 

• Filters traffic based only on the source address. 

• Implemented closest to the destination. (Guideline) 
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Standard Access Control List Configuration 


Creation of Standard Access List 

Router(config)# access-list <acl no> <permit/deny> <source address> 

<source wildcard mask> 

Implementation of Standard Access List 

Router(config)# interface interface typo <interface no> 
Router(config-if)# ip access-group <number> <out/in> 


Verification 


Router# Show access-list 


ICCIII 
CCNP 

e c n k 


Standard ACL - Network Diagram 
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LAN -192.168.2.0/24 LAN - 10.0.0.0/8 LAN - 192.168.3.0/24 
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How does a Standard ACL work ? 
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LAN - 1 92.1 68.2.0/24 LAN - 1 0.0.0.0/8 LAN - 1 92.1 68.3.0/24 



How does a Standard ACL work ? 
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How does a Standard ACL work ? 
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Example of a standard access list 
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Extended Access List 


• The access-list number range is 100 - 199. 

• Can filter a network, subnet, host and service. 

• One way communication is stopped. 

• Selected services can be blocked or allowed. 

• Filters traffic based on the source address, destination address and service. 

• Implemented closest to the source. (Guideline) 
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Extended Access Control List configuration 



ZOOM 


Creation of Extended Access List 

Router(config)# access-list <acl no> <permit/deny> <protocol> 
<source address> <source wildcard mask> 
destination address> < destination wildcard mask> 
<operator> <service> 

Implementation of Extended Access List 

Router(config)# interface <interface type> interface no> 

Router(config-if)# ip access-group <number> <out/in> 


Verification 


Router# Show access-list 





E 


137 








Extended ACL - Network Diagram 
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LAN- 192.168.2.0/24 


LAN - 10.0.0.0/8 


LAN- 192.168.3.0/24 


10.0.0.0 should not access 192.168.3.2 (Web Service) 

m il fl (1 chnulH nnt nine? 1Q7 IfiR 1 H Nptu/nrk 



How does an Extended ACL work ? 
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LAN -192.168.2.0/24 


LAN- 10.0.0.0/8 


LAN - 192.168.3.0/24 
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How does an Extended ACL work ? 
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J access-list 101 deny tcp 10.0.0.0 0.255.255.255 192.168.3.2 0.0.0.0 eq 80 




access-list 101 deny icmp 10.0.0.0 0.255.255.255 192.168.2.0 0.0.0.255 echo 
access-list 101 permit ip any any 




How does an Extended ACL work ? 
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LAN -192.168.2.0/24 


LAN- 10.0.0.0/8 


LAN - 192.168.3.0/24 
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How does an Extended ACL work ? 
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Broadcast and Collision Domain 
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* Broadcast Domain: A broadcast domain is a set of network devices for which a 
broadcast frame sent by one device is received by ail other devices in that LAN 
segment. 


• Collision Domain: A collision domain is a set of network devices for which a frame sent 
by one device could result in a collision with a frame sent by any other device in the 
same LAN segment. 



Functions of HUB 
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Functions of HUB 
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Functions of HUB 
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Functions of HUB 
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Functions of Switch 
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Functions of Switch 
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Source MAC 


001C.C01A.0002 )2 


Destination MAC 


Source MAC 
Destination 


DATA 


MAC 


001C.C01A. 


001C-C01 A-0004 




Functions of Switch 
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Types of Switches 
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* Manageable switches 

- On a Manageable switch an IP address can be assigned and configurations can be 
made. It has a console port . 

• Unmanageable switches 

- On an Unmanageable switch configurations cannot be made, an IP address cannot 
be assigned as there is no console port. 



Campus Network 
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* Campus is a LAN network supporting larger buildings or multiple buildings close to a 
specific area 


• Cisco uses three terms to describe the role of each switch in a campus design 

- Access 

- Distribution 

- Core 
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Hierarchical Design 
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CORE LAYER 


LAYER 3 


DISTRIBUTION LAYER 


ACCESS 


LAYER 2 


Cisco's Hierarchical Design for switches 
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* Cisco Switches can be categorized into 3 Layers 

- Access Layer Switches 
Switches Series : 1900, 2950, 2960 

- Distribution Layer Switches 
Switches Series : 

• Fixed : 3550, 3560, 3750 

• Modular: 4500, 5500 

- Core Layer Switches 
Switches Series : 6500 
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Virtual LAN 
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• Divides a Single Broadcast domain into Multiple Broadcast domains 

* provides L2 Security 

* By default all ports of the switch are in VLAN1 . VLAN1 is known as Administrative 
VLAN or Management VLAN 

• VLAN can be created from 2 - 1001 
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Static VLAN 


• Static VLANs are port based hence they are also called as Port-based VLANs. 

• Ports have to be manually assigned to a VLAN. 

• A Port can be a member of a single VLAN. 
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Dynamic VLAN 
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* Dynamic VLANs are based on the MAC address of a device 

* Switch automatically assigns the port to a VLAN 

* Each port can be a member of multiple VLAN's 

* For Dynamic VLAN configuration, a software called VMPS( VLAN Management Policy 
Server) is needed 
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Creating VLAN 


Switch(config)# Vlan < vlan number > 
Switch(config-vlan)# name < name > 


Implementation of Vlan 
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Switch(config)# interface <interface typo <interface no> 
Switch(config-if)# switchport mode access 
Switch(config-if)# switchport access vlan < Vlan ID > 
Switch(config-if)#exit 


Verification 


Switch# Show vlan brief 
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Trunk Port allows multiple Vlan traffic to pass through a single physical connection by 
adding a header to Ethernet frame. 


Trunking Protocols of two different types 


ISL(lnter Switch Link) 

802.1q 

Cisco proprietary 

Open standard 

30 bytes 

4 bytes 
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Trunk configuration 


Trunk configuration 

Switch(config)# interface interface type> interface no> 
Switch(config-if)# switchport mode trunk 
Switch(config-if)#switchport trunk allowed vlan < all/vlan ID > 
Switch(config-if)#exit 


Verification 


Switch# Show interface trunk 



VLAN and Trunk 
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Dynamic Trunking Protocol (DTP) 


• DTP is a Cisco proprietary protocol. 

• DTP is responsible for dynamically negotiates trunks between Switches. 


ZOOM 

^^TECHNOLOGIES, 




• DTP is enabled in all Cisco switches by default. 

• DTP modes 

- Access mode 

- Trunk mode 

- Dynamic desirable 

- Dynamic auto 



DTP Modes 
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Command Option 

Description 

Access 

Always act as an access(Non-Trunk) port 

Trunk 

Always act as a Trunk port 

Dynamic Desirable 

Initiates negotiation messages and responds to 
negotiation messages to start using Trunking 


Dynamic Auto Passively waits to receive trunk negotiation messages 
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Administrative 

mode 

Access 

Dynamic Auto 

Trunk 

Dynamic 

Desirable 

Access 

Access 

Access 

Do not Use 

Access 

Dynamic Auto 

Access 

Access 

Trunk 

Trunk 

Trunk 

Do not Use 

Trunk 

Trunk 

Trunk 

Dynamic 

Access 

Trunk 

Trunk 

Trunk 


Desirable 
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Virtual LAN Trunking Protocol (VTP) 
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• VTP is a CISCO proprietary protocol 

* It is used to share the VLAN configurations with multiple switches 


• The new VLAN needs to be added only on one switch and the configuration will 
automatically be sent to all other switches 

• VTP only works when trunking is configured on FastEthernet or higher ports 

• Note: Switches Should be configured with same Domain Name. Domain Names are 
Case sensitive 
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VLAN Name Status 


1 

Default 

Active 

10 

Sales 

Active 


VLAN Name Status 


1 

Default 

Active 

10 

Sales 

Active 
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VTP Modes 


• Server 

- Default mode 

- Create , Modify and Delete VLANs 

- Forwards advertisements 

- Synchronizes 

• Client 

- Cannot create, Modify or delete VLANs 

- forwards advertisements 

- Synchronizes 

• Transparent 

- Create , Modify and Delete local VLANs only 

- Forwards advertisements 

- Does not synchronize 
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VTP configuration 
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| Configuring VTP | 


Switch(config)# VTP Mode < server/client/transparent > 
Switch(config)# VTP Domain < Name > 

Switch(config)# VTP Password < password > 



Verification 


Switch# Show vtp status 
Switch# Show vtp password 

^ J 
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VLAN Trunking Protocol 
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VTP Server 


VTP Client / Transparent 





Sales 

VLAN 

10 
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Inter-VLAN Routing 
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• Inter-VLAN routing is a process of forwarding network traffic from one VLAN to 
another 

• Layer-3 device is required for Inter-VLAN routing 

• Each VLAN should be configured in a different IP subnet. 

• The switch port connected to the Router must be configured as a trunk 

• One sub-interface for each VLAN should be configured on the physical interface. 

• Router-on-a-stick is a type of Router configuration in which a single physical interface 
routes traffic between multiple VLANs 



Inter-VLAN Routing 


/ 


Computer 

Vlan 

No. 

IP Address / Mask 

PCI 

10 

192.168.2.10/24 



SWl - 192.168.20.50 


ITT 


2 




1 4 

Sales 



Mktg 

VLAN 



VLAN 

10 



20 


5 6 


X 


PC2 10 
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Computer 

Vlan 

No. 

IP Address / Mask 

PC5 

20 

192.168.3.10/24 
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Router Sub Interface Configuration 
Router(config)#interface Ethernet 0/0.< no. > 
Router(config-subif)#encapsulation dotlq < vlan ID > 
Router(config-subif)#ip address < ip > < subnet mask > 
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Redundant Topology 


* To eliminate single point of failure, backup links are used. 

• This type of network is called as a redundant topology. 
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Problems in Redundant Topologies 
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• Redundant topology causes 

- Multiple frame copies 

- MAC address table instability 

- Broadcast storms 

• The above problems are collectively called layer 2 switching loops. 
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Problems in Redundant Topologies 
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Problems in Redundant Topologies 
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Problems in Redundant Topologies 
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Problems in Redundant Topologies 
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Problems in Redundant Topologies 
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Problems in Redundant Topologies 
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Spanning-tree Protocol 


• Spanning-tree protocol is used in switched network to avoid switching loops 

• It uses spanning-tree algorithm 

• STP blocks redundant paths that could cause a loop 

• STP is a open standard (IEEE 802. 
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STP Terminology 
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• Root Switch 

- The switch with the best (lowest) Switch ID. 

- Out of all the switches in the network, one switch is elected as a Root switch. This 
Root switch becomes the focal point of the network. 

• Switch ID 

- Each switch has a unique identifier called a Bridge ID or Switch ID 

- Bridge ID = Priority + MAC address of the switch 
• Default priority is 32768 

• Non-Root Switch 

- All switches other than the Root switch are called Non-root switches. 
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Root Switch Election 
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STP Terminology 


BPDU 
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- Switches exchange information using Bridge Protocol Data Units (BPDUs) 

- BPDUs contain information that helps the switch to determine the topology 

- BPDUs are sent every 2 sec 
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Root Switch Election 
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STP Terminology 
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• Root port 

- Every Non-Root Switch must have a Root port 

- Only one port per switch can be the Root port 

- All Root ports will be in forward mode 

- A Switch's Root port is the port closest to the Root Switch 

• The port with the least cost 

• The port with the lowest Neighbor switch ID 

• Lowest Physical Port Number 
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IEEE Cost Values 
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Type 

Cost Value 

Ethernet 

100 

Fast Ethernet 

19 

Gigabit Ethernet 

4 

10 Gigabit Ethernet 

2 



Root Port Election 
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STP Terminology 


• Designated port 

- For Every segment there will be a Designated port 

- A designated port will always be in Forward Mode 

• The port with the least cost 

• The port with the lowest Neighbor switch ID 

• Lowest Physical Port Number 

- All ports(Trunk ports) on the Root bridge are Designated ports 
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Designated Port Election 
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Switch ID: 32768. 0001.0000.0001 
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STP Terminology 


• Non-Designated port 

- The ports that are neither Root ports nor the Designated ports 

- These ports are blocked by STP 
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Non-Designated Port Election 
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Switch ID: 32768. 0001.0000.0001 
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Switch - Port States 


Blocking 

- 

20 Sec Or No Limits. 

Listening 

- 

15 Sec. 

Learning 

- 

15 Sec. 

Forwarding 


No Limits 
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STP Verification 
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Verification 



Switch# show spanning-tree 



To change the Priority 


L. 

Switch(config)#spanning-tree vlan 1 priority < priority > 

J 
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PortFast 
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• Portfast allows a port to switch from blocking to forwarding bypassing listening and 
learning states. 

• The portfast feature can be enabled on a port where there are no Bridges and switches 
connected, otherwise it may create loops. 

• Portfast is recommended to be enabled on a port where end user devices are 
connected. 



BPDU Guard 
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The Cisco BPDU guard feature disables the port ,if any BPDUs are received on the port. 


* This is recommended to be enabled on a port where Portfast is configured, because if 
any switch connects to such a port, the local switch can block the port preventing 
loops. 
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Rapid Spanning Tree Protocol (RSTP) 


• This is the enhance version of STP (802. lw) 

• Improved STP convergence . 


ZOOM 

\t^chnoujgies 


•J 


• RSTP selection 

- Root bridge selection 

- Root port selection 

- Alternate port selection (Backup Root port) 

- Designated port selection 

- Backup port selection (Backup Designated port) 



Per-vlan Spanning Tree Protocol (PVST) 


• PVSTP is a Cisco proprietary protocol. 

• One STP instance for each VLAN. 


ZOOM 
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• Separate Root switches. Root ports, and block ports for each VLAN. 

• The traffic load can be balanced across the available links 


Switch A-Root for Vlan 10 



VLAN10 

VLAN20 

VLAN30 
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Switch Path 
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EtherChannel 
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An EtherChannel combines individual Ethernet ports into a single logical link, providing 
Redundancy and Load balancing. 


• If one Ethernet port in EtherChannel fails, traffic previously sent over the failed 
Ethernet port will be sent through the other Active Ethernet ports within the 
EtherChannel 

• EtherChannel can be used from Switch to Server, Switch to Router, Switch to Firewall 
and Switch to Switch. 

• Load balancing happens based on mac address. 

• Note: 

- Only similar physical ports (Ethernet or Fiber) can be bundled. 

- Maximum 8 links can be bundled per EtherChannel 
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Port Security 
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• Port Security is used to control network access based on the following: 

- MAC Address 

- Number of MAC Addresses per port 

• If any violation takes place the following actions can be configured: 

- Shutdown 

- Restrict 

- Protect 
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Violation Modes 


Shutdown 

- The port becomes error disabled and the port LED turns off. 
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• Protect 

- Frames with unknown source MAC address are dropped. It does not notify that a 
security violation has occurred. 

• Restrict 

- Frames with unknown source address are dropped. It gives a notification (log 
message) that security violation has occurred. 



Port-Security 
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Port Security Configuration 


ZOOM 




Configuring port security 

switch(config)# interface interface type> <interface number> 
switch (config-if)# switchport mode access 
switch(config-if)# switchport port-security maximum <value> 
switch(config-if)# switchport port-security mac-address <mac-address> 
switch(config-if)# switchport port-security violation {protect | restrict | shutdown} 

switch(config-if)# switchport port-security 


Verification 


Switch# show port-security 



Error Disable Recovery 
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Configuring Error Disable Recovery 

switch(config)# errdisable recovery cause psecure-violation 
switch(config)# errdisable recovery interval <seconds> 
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Default Routing 
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• A default route, or gateway of last resort, allows traffic to be forwarded, even without 
a specific route to a particular network. 


* The default route is identified by all zeros in both the network and subnet mask 

( 0 . 0 . 0.0 0 . 0 . 0 . 0 ) 

• The default route is represented with S* 


Configuring Default Routing 

Router(config)# ip route 0.0.0.0 0.0.0.0 < Exit interface type & no. > 





0 


176 







Example.... 
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INTERNET 





L 1 

IP Address /Mask 

E0/0 

192.168.2.1/24 


so/o 


202.1.0.18/29 




Network Address Translation (NAT) 
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NAT 


* NAT is a process of changing one IP into another 

• NAT is used to save precious public IP addresses. 
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• NAT is usually used to translate private IP addresses to public IP addresses and vice 
versa 

• It provides security 

• Types of NAT 

- Static (one to one mapping) 

- Dynamic (many to many mapping) 

- PAT (many to one mapping) 



Private IP Address 
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There are certain addresses in each class of IP address that are reserved for Private 
Networks. These addresses are called private addresses. 

These addresses are not Routable (or) valid on Internet. 


r 


Class A 

10.0.0.0 to 10.255.255.255 




Class B 

172.16.0.0 to 172.31.255.255 


Class C 

192.168.0.0 to 192.168.255.255 
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Static NAT 
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* One private IP address is mapped to one public IP address. 

* Generally used for hosting public servers. (Internet to Server) 

* Generally configured for inbound traffic. 
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Static NAT Configuration 
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192.168.1.10 192.168.1.11 

LAN - 192.168.1.0/24 


192.168.1.12 


.0.18/29 

—T 


192.168.1.1/24 



Static NAT 
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TRANSLATION TABLE 

INSIDE GLOBAL INSIDE LOCAL OUTSIDE LOCAL OUTSIDE GLOBAL 



LAN -192.168.1.0/24 
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Static NAT 


ZOOM 

^TECHNOLOGIES 


') 


Source IP and Port 



INSIDE GLOBAL INSIDE LOCAL 


TRANSLATION TABLE 
OUTSIDE LOCAL OUTSIDE GLOBAL 


202.1.0.20 

192.168.1.10 

— 

— 

202.1.0.21 

192.168.1.11 





LAN - 192.168.1.0/24 



Static NAT configuration 


Defining NAT on Interfaces 


Router(config)# interface interface type> interface number> 
Router(config-if)# ip nat inside/outside 


Configuring static NAT 

Router(config)# ip nat inside source static <private ip> <public ip> 


ZOOM 


NOIOGIES 
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r 

Verification 

^ 

Router# Show ip nat translations 

i 
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Dynamic NAT 
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* Many private IP addresses are mapped to many public IP addresses. 

* Configured for outbound traffic. (LAN to Internet) 

* Number of people who can connect to internet is equal to the number of public IP 
addresses 
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Dynamic NAT 


ZOOM 

^TECHNOLOGIES 


') 


Source IP and Port 
Destination IP and Port 


202.1.0.20- 80 



INSIDE GLOBAL INSIDE LOCAL 


TRANSLATION TABLE 
OUTSIDE LOCAL OUTSIDE GLOBAL 



1 927168.57T0 


1927168.5711 
LAN - 192.168.2.0/24 


192.168.2.12 



Dynamic NAT 
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Source IP and Port 
Destination IP and Port 


192.168.2.10 - 3000 


Source IP and Port 


ref 202.2.0.19- 3000 reply 


fcU/U 

192.168.2. 


1/24 


INSIDE GLOBAL INSIDE LOCAL 



TRANSLATION TABLE 
OUTSIDE LOCAL OUTSIDE GLOBAL 



192.168.2.10 192.168.2.11 

LAN - 192.168.2.0/24 


192.168.2.12 
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Dynamic NAT 
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Source IP and Port 
Destination I 



INSIDE GLOBAL INSIDE LOCAL 


TRANSLATION TABLE 
OUTSIDE LOCAL OUTSIDE GLOBAL 



m 

192.168.2.10 ~~ isz.ibB.z.n 

LAN - 192.168.2.0/24 


192.T68.2.12 



Dynamic NAT 
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Source IP and Port 
Destination IP and Port 


192 . 168 . 2.11 - 3000 



!■%/ 'J*4 

192.168.2.10 192.168.2.11 192.168.2.12 

LAN - 192.168.2.0/24 
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PAT(Overloading) 


* Many private IP addresses are mapped to one public IP address. 

* Configured for outbound traffic (LAN to Internet) 

* All users can access Internet at the same time. 
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PAT(Overloading) 
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Source IP and Port 
Destination IP and Port 


202.1.0.20- 80 



INSIDE GLOBAL INSIDE LOCAL 


TRANSLATION TABLE 
OUTSIDE LOCAL OUTSIDE GLOBAL 



LAN - 192.168.2.0/24 



PAT(Overloading) 
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Source IP and Port 
Destination IP and Port 


192.168.2.10 - 3000 


Source IP and Port 


DATA 


DATA 


and 


Port 


estination 


192.168.2.1/24 


INSIDE GLOBAL INSIDE LOCAL 


TRANSLATION TABLE 
OUTSIDE LOCAL OUTSIDE GLOBAL 


202.2.0.18:3000 192.168.2.10:3000 202.1.0.20:80 


202.1.0.20:80 


192.168.2.10 


192.168.2.11 


9 

192.168.2.12 


>urce 
Destination 


DATA 


202 . 1 . 0 . 2 " - 

DATA htt P 

202.2.0.18 - 3000 reply 


LAN - 192.168.2.0/24 
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PAT(Overloading) 
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Source IP and Port 
Destination IP and Port 


INSIDE GLOBAL INSIDE LOCAL 


TRANSLATION TABLE 
OUTSIDE LOCAL OUTSIDE GLOBAL 


202.2.0. 18:3000 192.168.2.10:3000 202.1.0.20:80 202.1.0.20:80 

202.2.0. 18:3010 192.168.2.11:3000 202.1.0.20:80 202.1.0.20:80 


- a 

M 


192.168.2.1 i - ’"nn 
DATA 

202.1.0.2U- ou 


192.168.2.10 192.1b».2.11 

LAN - 192.168.2.0/24 


http 

request 


192.T68.2.12 




PAT(Overloading) 
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202.2.0.18:3000 


192.168.2.10:3000 


202.1.0.20:80 


202.1.0.20:80 


DATA 


Source IP and Port 
estination IP and Port 


DATA 




192.168.2.1/24 


Source IP and Port 
Destination IP and Port 


INSIDE GLOBAL INSIDE LOCAL 


TRANSLATION TABLE 
OUTSIDE LOCAL OUTSIDE GLOBAL 


202.2.0.18:3010 192.168.2.11:3000 202.1.0.20:80 



192.168.2.10 192.168.2.11 192.168.2.12 



LAN - 192.168.2.0/24 
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Verification 

Router# Show ip nat translations 
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FIRST HOP REDUNDANCY PROTOCOL 
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• First Hop Redundancy Protocols (FHRP) are a group of protocols that provide Default 
Gateway Redundancy if there is more than one path to the same Destination. 


• The following are FHRP: 

- HSRP (Cisco Proprietary | RFC) 

- VRRP (IETF Standard) 

- GLBP (Cisco Proprietary) 

• First Hop Redundancy Protocols enables two or more devices (Routers) to work 
together as a group. They share a common IP address called "Virtual IP address". This 
virtual IP address is configured as the default gateway address for the LAN hosts. 



HSRP ( Hot Standby Router Protocol ) 


HSRP operates with an active/standby model 


ZOOM 
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• HSRP allows two (or more) routers to cooperate, all being willing to act as the default 
router 

• Only one router actively supports the end-user traffic, the other routers would be in 
an HSRP standby state 

• The router with highest priority will be the Active router 

• On all routers, default priority is 100 

• If the priority is the same on all the routers, the router with highest IP address will be 
the Active router 


Configuring HSRP 


Router(config)# interface < interface type > < no. > 
Router(config-if)# standby 1 ip < virtual ip > 
Routerfconfie-ifl# standbv 1 orioritv < orioritv > 



0 


189 











0 


190 












Types of WAN Technologies 


• Dedicated service 

- Leased Line 

• MLLN (Managed Leased Line Networks) 

• Circuit switching 

- PSTN (Public Switched Telephone Networks) 

- ISDN (Integrated Services Digital Networks) 

• Packet Switching 

- Frame-relay 

- MPLS (Multi Protocol Label Switching) 

- ATM (Asynchronous Transfer Mode) 

• Broadband 

- DSL 

- Cable internet 
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Frame Relay Network Diagram 
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LAN - 192.168.2.0/24 
CHENNAI OFFICE 



Advantages of Frame Relay 
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• Frame Relay uses logical circuits to make connections between sites. 

• These logical circuits are referred to as Virtual Circuits (VCs). 

• Only one serial interface of a Router is used to connect to multiple sites using virtual 
circuits. 

• Uses Shared bandwidth 

• VCs provide full duplex communication. 
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Frame Relay Terminology 


• Virtual circuits are of two types: 

- Permanent Virtual Circuits - PVCs 

- Switched Virtual Circuits -SVCs 

• Permanent Virtual Circuit : 

- PVCs are similar to a leased line(dedicated). 

- Used when constant data need to be sent. 

• Switched Virtual Circuit : 

- Also called as Semi-permanent virtual circuit(Dial-up). 

- Used when data has to be sent in small amounts and at periodic intervals. 
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Frame Relay Terminology 
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* Local Management interface(LMI): 

- Works between the Router (DTE) and the Frame Relay switch (DCE). 

- It is a keepalive mechanism that provides status information about Frame Relay 
connectivity. 

- LMI standards : Cisco, ANSI, Q933a 

- It is Locally significant (it should be same between router and frame relay switch). 
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Frame Relay Terminology 
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* Data Link Connection Identifier(DLCI) : 

- To identify each VC on a physical interface. 

- Each VC has a unique DLCI number(locally significant). 

- Frame relay switches use DLCI number to forward data to remote network. 

- Inverse ARP automatically maps DLCIs to next hop IP addresses, mapping can also 
be done manually. 

- DLCIs range from 16 to 1007 (these are assigned by service providers). 



LMI and Inverse ARP 
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< ► 

Hello, I am 10.0.0.2 


< 

Hello, I am 10.0.0.1 



FRAME RELAY MAP 

10.0.0.2 

| DLCI 100 | ACTIVE 


*> 



FRAME RELAY MAP 

10.0.0.1 

| DLCI 400 | ACTIVE 


Keep Alive Keep Alive 

► < 
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Frame Relay Terminology 


* Committed Information Rate(CIR) : 

- Minimum bandwidth guaranteed by service provider. 

• Burst Rate(BR) : 

- Also called excess information rate. 

- Excess data rate beyond the provider guaranteed(CIR). 
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Frame-Relay Network Diagram 







<>' 


E0/0 


Switch 


S0/0 



Interface 

IP Address / Mask 

E0/0 

192.168.2.1/24 


FRAME RELAY 
Service Provider 



r l 
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Interface 

IP Address / Mask 



192.168.3.1/24 

172.16.0.2/16 
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Frame Relay configuration 
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Configuring Serial interface 

Router(config)# interface serial < no. > 

Router(config-if)# ip address < address > < mask > 
Router(config-if)# no shutdown 
Router(config-if)# encapsulation frame-relay 
Router(config-if)# frame-relay Imi-type <lmitype> 
Router(config-if)# frame-relay interface-dlci < did no > 


Verification 


Router# show frame-relay map 
Router# show frame-relay pvc 


ICC I El 
CCNP 
C C N k 
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VIRTUAL PRIVATE NETWORK 
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• It provides a private communication channel over a public network. 

• Provides security 

• Provides point to point connectivity 

• Scalability 



Features of VPN 
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• Confidentiality (Privacy) 

- Preventing anyone in the middle of the Internet (man in the middle) from being able 
to read the data 


• Authentication 

- Ensuring that the sender of the VPN packet is a legitimate device and not a device 
used by an attacker 

• Data integrity 

- Ensuring that the packet was not changed as the packet transited the Internet 


• Anti-replay 

- Preventing a man in the middle from copying and later replaying the packets sent by 
a legitimate user for the purpose of pretending to be a legitimate user 
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TYPES OF VPN 
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Company Headquarters 


Intornot 



Company Branch Office 


Intranet 

Extranet 

Remote Access 



Supplier Office 



Fred at Home (SOHO) 


Remote Access VPN 



TYPICAL PURPOSE 


A site to site VPN that connects all the computers at two sites of the same organization , usually 
using one VPN device at each site. 

A site to site VPN that connects all the computers at two sites of diffarent but partnering 
organisations, usually using one VPN device at each site. 

Connecting idividual internet users to the enterprise network 



Types of VPN 
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• IPSEC VPN: IPSec defines how two devices, both connected to the Internet, can 
achieve the main goals of a VPN such as confidentiality, authentication, data integrity, 
and anti-replay. 

- IPSec uses encryption, encapsulating an IP packet inside an IPSec packet. De- 
encapsulation happens at the end of the tunnel, where the original IP packet is 
decrypted and forwarded to its intended destination. 

• SSL VPN: The Secure Socket Layer (SSL) protocol serves as an alternative VPN 
technology to IPSec. In particular, today's web browsers support SSL as a way to 
dynamically create a secure connection from the web browser to a Web 
Server/Application Server, supporting safe online access to financial transactions. 
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GENERIC ROUTING ENCAPSULTION ( GRE ) 
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- GRE is a tunneling protocol that was originally developed by Cisco. 

- GRE provides tunneling of non-IP traffic (IPX and Appletalk), and Multicast traffic 
(which is not done by IPSec). 

- However, GRE provides only tunneling without any encryption. 

NOTE: STATIC ROUTE SHOULD BE CONFIGURED TOWARDS REMOTE LAN 
NETWORK VIA TUNNEL INTERFACE 



GRE Tunnel Configuration 
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GRE TUNNEL Configuration 


Router(config)# interface tunnel < no. > 

Router(config-if)# ip address < address > < subnet mask > 
Router(config-if)# tunnel source < tunnel source ip address > 
Router(config-if)# tunnel destination < tunnel destination ip address > 


Verification 


Router# Show interface tunnel < no. > 
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Example 
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IPv6 Address 


• IPv6 is a 128 bit address. 


ZOOM 

^TECHNOLOGIES 


'J 


• It is represented as 32 hexadecimal numbers arranged in 8 quartets of 4 hexadecimal 
digit separated by a colon 

- xxxx : xxxx : xxxx : xxxx : xxxx : xxxx : xxxx : xxxx 

- 2031:0000:0000: 130f:0000:0000:09c4: 1300 

• Case insensitive for A,B,C,D,E and F. 

• Leading zero in any quartet can be omitted. 

• Successive fields of zeros can be represented as :: but only once in a address. 



IPv6 Address 


* IPv6 is a flat addressing scheme i.e. it is not divided into classes. 


2031:0000:0000:130f:0000:0000:09c4:1300/64 
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Prefix 


Host 


V 


Y 

Prefix length 


J 
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IPv6 Address types 


• Unicast 

• Multicast 

• Anycast 
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Special Addresses 
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0 : 0 : 0 : 0 : 0 : 0 : 0:0 


0.0.0. 0 (any host) 


0 : 0 : 0 : 0 : 0 : 0 : 0:1 


2000: :/3 


■•1 
• • j. 


127.0.0.1 (Loopback) 

Public IP addresses 


FC00::/7 


Unique Local 


FE80::/10 


Link local range 


FF00::/8 


Multicast range 
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Host Configuration 
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MAC address of Local system 


021CC01242EA 



F F F E 

021C:C0FF:FE12:42EA 

HOST portion of IPv6 address 



IPv6 Auto-configuration 
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Prefix 


Host 


V. 


Y 

Assigned by Router 


A 


Y 

Self MAC address + padded bits 


J 


2031:0000:0000: 130f:021c:c0ff:fel2:42ea /64 

V A ) 


Y 

Assigned by Router 


Y 

Self MAC address + padded bits 
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Neighbor Discovery Protocol (NDP). 


* ARP Replaced by Neighbor Discovery Protocol 

* For IPv4, Address Resolution Protocol(ARP) discovers the MAC address used by 
neighbors 
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NDP FUNCTIONS 
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• SLAAC : For Auto Configuration 

• Router Discovery : To Identify the Router 

• Duplicate Address Detection(DAD) : To Identify the IP conflicts 

• Neighbor MAC Discovery : To get destination MAC Address 
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NDP MESSAGES 


• Router Solicitation (RS): It is a message generated by Client to Router, 
FF02::2(multicast address) 
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• Router Advertisement (RA):This is a response of Router Solicitation, FF02::1 (mulicast 
address) 

• Neighbor Solicitation (NS): It is a request to discover Destination Client 

• Neighbor advertisement (NA): It is a reply for Neighbor Solicitation message 



IPv6 Routing protocols 
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• Static 

• RIPng 

• OSPFv3 

• EIGRPv6 

• MPBGP 
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IPv4/IPv6 co-existence 


• Dual-stack 

• Tunneling 

• Translation (NAT -PT) 
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Dual Stack 


ZOOM 


V 


TECHNOLOGIES, 


u 


Dual stack is process of configuring IPv4 and IPv6 address on the same interface. 



EO 

192.168.1.1/24 

2001 :124::21c:c0ff:fe12:42ea/64 
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6to4 tunneling 
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Dual-Stack 

Router 


Dual-Stack 

Router 


IPv4 


IPv6 » 
Network / 


IPv6 - 
Network/ 


IPv6 Header 

Transport 

Header 

Data 

' \ 


IPv6 

Host 


IPv6 


Host 


Tunnel: IPv6 in IPv4 packet 


IPv4 Header 


' I I iigj 
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• Similar to static NAT in IPv4. 


* Each IPv4 address is NATed to a IPv6 address. 



0 


207 










IPv6 Configuration 


ZOOM 


V 


TECHNOLOGIES 


u 


GO/1 



Interface 

IP Address /Mask 

G0/0 

2001:l::l/64 


GO/1 2001:3-1/64 



GO/1 2001:3-2/64 
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BASIC OSPF v3 CONFIGURATION 
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It is similar to OSPF v2 for IPv4 
OSPF v3 is for IPv6 Networks 

Similarities between OSPF V2 and OSPF V3 

- Both are Link State Protocols 

- Both use IPv4 address as Router Id 

- LSA flooding and aging mechanism 

- Basic packet types (LSAs) 


OSPF v3 Configuration 
Router(config)# ipv6 unicast-routing 
Router(config)# ipv6 router ospf < P id > 
Router(config-rtr)# router-id < ipv4 ip address > 
Router(config-rtr)# exit 

Router(config)# interface < interface type > < no. > 
Router(config-if)# ipv6 ospf < P id > area < area id > 
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EIGRP v6 


* It is similar to EIGRP of IPv4 

• EIGRP v6 is for IPv6 Networks 
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EIGRP v6 Configuration 




Router(config)# ipv6 unicast-routing 
Router(config)# ipv6 router eigrp < As no. > 
Router(config-rtr)# no shutdown 
Router(config-rtr)# router-id < ipv4 ip address > 
Router(config-rtr)# exit 

Router(config)# interface < interface type > < no. > 




Cisco Discovery Protocol (CDP) 
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Cisco Discovery Protocol (CDP) 


• It is a Cisco proprietary protocol. 

• CDP is enabled by default in all Cisco devices. 

• CDP advertisements are sent through all the ports by default. 

• CDP Advertisement are sent every 60 seconds. 

• CDP Advertisements are sent via multicast address 01:00:0c:cc:cc:cc. 
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Advantages of CDP 


Once Layer 1 is active CDP sends the information to its active neighbors. 
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* It can be used for Layer 1, layer 2, layer 3 troubleshooting. 

* Information advertised by CDP 

- Logical address (if defined) 

- Hostname 

- Hardware Platform 

- IOS Version 

- Interface Type and Interface Number of local and remote device connected. 
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Example of CDP working 
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Disadvantages Of CDP 


CDP can be used only between Cisco devices. 
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* Information about only directly connected neighbors can be known. 
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DYNAMIC HOST CONFIGURATION PROTOCOL 


ZOOM 


DHCP is used for dynamic IP address assignment to network devices / hosts 
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DHCP server provides IP address. Subnet mask. Default gateway and DNS server IP 
address to DHCP clients. 


Configuring DHCP 




Router(config)#ip dhcp pool < name > 

Router(config-dhcp)#network< network id > < subnet mask > 
Router(config-dhcp)#default-router < ip address > 
Router(config-dhcp)#dns-server < ip address > 
Router(config-dhcp)#lease < time > 

Router(config-dhcp)#exit 

Router(config)#ip dhcp excluded-address < start ip > < end ip > 
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SSH (SECURE SHELL) 
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* Telnet is used to configure the Network devices. 

* However Telnet sends data in plain text, so Telnet is not secure. 

• SSH is used for secure remote login, it provides data encryption between host and 
network device. 

• Cisco IOS should support encryption for running SSH. 



Configuring SSH 
Router(config)# hostname xxxx 
Router(config)# username xxxx password xxxx 
Router(config)# ip domain-name < name.com > 
Router(config)# crypto key generate rsa 
Router(config)# line vty 0 4 
Router(config-line)# transport input ssh 
Router(config-line)# login local 
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Syslog is an application that stores Log information from Network devices. 
Syslog works with a Client/Server model. 


• Syslog Client : 

- A network device that generates Log message and send the syslog server. 

• Syslog Server : 

- A PC/Server that has the Syslog software installed and accepts and stores log 
messages. 
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System Message Security Levels 
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Level 

Level Name 

Explanation 

0 

Emergency 

The System may be unusable 

1 

Alert 

Immediate action may be required 

2 

Critical 

A critical event took place 

3 

Error 

A router experienced an error 

4 

warning 

A condition might warrant attention 

5 

Notification 

A normal but significant condition occurred 

6 

Informational 

A normal event occurred 

7 

Debugging 

The output is a result of a debug command 



Configuring Syslog 
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Verification 


I RouterttShow logging I 
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Simple Network Management Protocol (SNMP) 
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SNMP is a standard TCP/IP protocol for Network Management. 

Supported by all Network devices (Routers, Switches, Firewalls, Servers, etc.) 


* Network Administrators use SNMP to monitor and map network availability, 
performance, and errors. 

• To read SNMP traps we need software like 

- WhatsupGold 

- Cisco Works 

- HPOpenview 

- IBM Tivoli 

- MRTG/PRTG 

Note: Traps are the log messages generated by SNMP 
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SNMP TRAFFIC MONITORING 
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Netflow 


zoom I 

^TECHNOLOGIES^ 

• A Network flow is sequence of packets moving from source device to destination 
device 

• In a flow the packets contain Source IP address, Destination IP address, Port 
information etc. 

• Netflow is a service, configured in Routers and Switches. 

• It allows Administrator to monitor the flow of different types of network traffic. 

• All Switches and Routers support Netflow, however an appropriate IOS is required. 
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* Key advantages of Netflow 

- Application and network usage monitoring 

- Network productivity and utilization of network resources 

- Network anomaly and security vulnerabilities 
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Network Time Protocol 
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• NTP is a Networking protocol designed to synchronize the clocks of computers over a 
network. 

• NTP uses UDP port no: 123 for sending the NTP updates 

• NTP uses different layers of Clock sources, each layer is called "Stratum". 

• NTP work as Client / Server model 
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Configuring NTP on Router 


Router(config)# ntp server < IP or Domain name of NTP server > 
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Cisco IOS image 
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* Cisco provides IOS image for each Router and Switch series separately, the IOS image is 
available in different version, release and feature set. 


* Cisco identifies major revisions to Cisco IOS software using the term version, with 
smaller changes to IOS being called a release. 
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CISCO IOS Image naming Conventions 
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* A Cisco IOS image is a binary executable file of a feature set for specific platform . 


• The name of Cisco IOS image represent the platform, features set, format, and other 
information of image file. 


Platform 
Feature set 
Memory location 
Compression format 
Train number 
Maintenance release 
Train identifier 


c3725-entbase-mz. 123-2-T.bin 
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Naming Conventions Feature Set 
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• Base: 

- Entry level image (i.e.: IP Base, Enterprise Base). 


• Services: 

- Addition of IP Telephony Service, MPLS, Net Flow, VoIP, VoFR, and ATM (i.e.: SP 
Services, Enterprise Services). 

• Advanced 

- Addition of VPN, Cisco IOS Firewall, 3DES encryption, Secure Shell, Cisco IOS IPSec 
and Intrusion Detection Systems (i.e.: Advanced Security, Advanced IP Services). 

• Enterprise 

- Addition of multi-protocols, including IBM, IPX, AppleTalk (i.e.: Enterprise Base, 
Enterprise Services). 



0 


222 






Licensing 
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A Software license is provided by Cisco by specifying the product id, serial number, and 
PAK (Product activation key) of the device 


• License will be received through email or in CD after ordering the IOS with required 
feature set. 

• NOTE: By default we will get the license with the device which we order with required 
features. If we require extra features we have to order Product Activation Key from 
Cisco product License portal. 

• License installation 

• Copy the License in tftp server 


Router# license install tftp:// <ip address of tftp>/license.lic 


• Note: after successful installation of license reload the router 
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Console Port 4=- 1 1 

L"™* A 

Connector 





Rollover 

RJ-45 to DB-9 

Computer 

Cable 

Converter 





• Connect the console cable from Router console Port to PC COM port 

• Open the Emulation Software ( Putty ) 

• Restart the Router 

• Press Ctrl + Break to Enter into Rommon mode 


Changing configuration register value in Modular Router 

rommonl>confreg 0x2142 
rommon2>reset 

Changing configuration register value in Fixed Router 


>0/r 0x2142 
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Initial Configuration 



■mm ■ -i i tru ii vt n vi 

Filo Edit View Help 




m\ ^1 -g I 


Reedy 




inum p 



0 


225 







ZOOM 


.TECHNOLOGIES 


D 


Backup of Startup-Configuration 


Command Prompt f^ _ |frilf><~| 


C:\> telnet 192.168.2.1 
Connecting 


WELCOME TO SRILANKA 


User Access Verification 
password : **** 

SRILANKA> enable 
password : **** 

SRILANKA# copy startup-config tftp 
Address or name of remote host []? 192.168.2.10 
Destination filename [startup-config]? 

M 

713 bytes copied in 0.56 secs 
SRILANKA# 



Backup of IOS 
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Command Prompt 



aa 

SRILANKA# show flash 
System flash directory: 

File Length Name/status 
1 8116916 C2600-io3s56i-mz.1 20-7T.bin 
[8116980 bytes used, 271628 available, 8388608 total] 

8192K bytes of processor board System flash (Read/Write) 

SRILANKA# copy flash: tftp: 

Source filename []? c2600-io3s56i-mz. 120-7T.bin 
Address or name of remote host []? 192.168.2.10 
Destination filename [c2600-io3s56i-mz. 120-7T.bin]? 

!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!l!l!l!!l!l!l!l!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!! 
!!!!!!!!!!!!!!!!!!!!!!!!!! ! [OK] 

8116916 bytes copied in 58.596 secs (139946 bytes/sec) 

SRILANKA# 
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Restoring Startup-config 


Command Prompt f^ _ |frT]f><~| 


SRILANKA# copy tftp startup-config 
Address or name of remote host []? 192.168.2.10 
Source filename []? startup-config 
Destination filename [startup-config]? 

Accessing tftp://192.168.2.10/startup-config... 

Loading startup-config from 192.168.2.10 (via EthernetO/O): ! 
[OK - 713/1024 bytes] 

[OK] 

713 bytes copied in 9.439 secs (79 bytes/sec) 

SRILANKA# 



Restoring IOS 
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Command Prompt f^T | | 


SRILANKA# copy tftp flash 
Address or name of remote host []? 192.168.2.10 
Source filename []? c2600-io3s56i-mz.120-7T.bin 
Destination filename [c2600-io3s56i-mz. 120-7T.bin]? 

Do you want to over write? [confirm] 

Accessing tftp://1 92.1 68.2.1 0/c2600-io3s56i-mz.1 20-7-T.bin... 

Erase flash: before copying? [confirm] 

Erasing the flash filesystem will remove all files! Continue? [confirm] 

Erase of flash: complete 

Loading c2600-io3s56i-mz.120-7.T.bin from 192.168.2.10 (via Ethernet0/0): 
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!!!!!!!l!lll!l!l!l!l!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!! 
I !!!!!!!!!!!!!!!!!!!!!!!!!!! [OK - 8116916/16233472 bytes] 


Verifying checksum... OK (0x3DE2) 

8116916 bytes copied in 78.321 secs (104063 bytes/sec) 
SRILANKA# 
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Command Prompt 


Loading c2600-io3s56i-mz.120-7T.bin from 192.168.2.10 (via Ethernet0/0): 
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! 
!!!!!!!!!!!!!!!!!!!!!!!!!!! [OK - 8116916/16233472 bytes] 

Verifying checksum... OK (0x3DE2) 

8116916 bytes copied in 78.321 secs (104063 bytes/sec) 

SRILANKA# 
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L3 Packet 


Catalyst Switch 


Layer 3 Engine 


Layer 3 Forwarding Engine 

FIB 

Table 


Adjacency 

Table 


Lookup ^ Rewrite 

L3 Packet | 


Control Plane 

Build FIB and 
Adjacency Tables 
in Software 


n own load 





Data Plane 

Forward IP Unicast 
Traffic in Hardware 


L3 Packet 


8 ‘ 



CEF 


• Forward Information Base 

- FIB is like a routing table. 

- Its uses the most specific match for destination 

- FIB Maps Destination with Next hop IP address 

- FIB table is updated along with the Routing table 

- FIB work at hardware switching processes 

• Adjacency Table 

- It maps layer 3(next hop IP) - layer 2 (MAC) 
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Incoming IP Unicast Packet 



Rewritten IP Unicast Packet 



IP Header 


Payload 
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Displaying CEF Entries in the FIB 
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Switch# show ip cef 
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MCSE-2012 fuii Course 


MICROSOFT CERTIFIED SOLUTIONS EXPERT 


Practicals in real-time environment. Detailed curriculum with all 5 papers 
Duration: 1 Month | 4 Hrs Per Day (starts on 30* of every month) 
Batches: Morning: 8.30 to 10.30 • Afternoon: 2.00 to 4.00 • Evening: 7.30 to 9.30 


CCNA (v 2.0) Full Course 


CISCO CERTIFIED NETWORK ASSOCIATE 


Cisco Routers with BSNL/TELCO MUX & Live Channelised El 

Duration: 1 Month | 4 Hrs Per Day (starts on 30* of every month) 
Batches: Morning: 8.30 to 10.30 • Afternoon: 2.00 to 4.00 • Evening: 7.30 to 9.30 




\ 




Complete Package 
for Only 



Practicals on Live Web Administration + Integration of Windows with Linux/Unix (Samba Server) 
Duration: 2 Weeks | 4 Hrs Per Day (starts on is* &30 ,h of every month) 
Batches: Morning: 8.00 • Afternoon: 1.30 • Evening: 7.00 




I'.'iilillWIliJJiJIhAHiWIlWjWlllliltWIi: 



• Ethical Hacking, Cyber Security and Firewall • Open Source: A glimpse into advance Linux 

• VMware vSphere and MS Private Cloude • Cisco WAN Technology & Collaboration 


Fees: ? 5,900/- 

+ 14% Service Tax 

Duration: 3 Months 
4 Hrs Per Day 


Free MCSE & CCNA Exam Practice Questions 


[UAr | Ethical Hacking & 
EI1UE I Countermeasures Expert 

Course is mapped to EHCE course from US-Council (www.us-council.com) 

(Pre requisite is CCNA / MCSE / LINUX) 

Duration: 2 Weeks | 4 Hrs Per Day (starts on is 1 " & 30 th of every month) 
Batches: Morning: 7.30 or Evening: 6.00 


CCNP R&S 


rcisco CERTIFIED NETWORK PROFESSIONAL^ 


Duration: 1 Month | 4 Hrs Per Day (starts on 15 th of every month) 
Batches: Morning: 7.30 • Afternoon: 2.00 • Evening: 6.00 
• Labs on latest routers with IOS version 15.X 


Monitoring, Diagnostics & Troubleshooting Tools 

• PRTG • Wireshark • SolarWinds, etc. 


► / 


Fees: ? 9,500/- 

+ 14% Service Tax . 


1 00 % 

GUARANTEED 

JOB 


ASSISTANCE 



Exam Practice Challenge Labs 


CCIE R&S 


tcisco CERTIFIED INTERNETWORK EXPERT 


Duration: 1 Month | 4 Hrs Per Day (starts on is 1 " of every month) 
Batches: Morning: 7.30 • Evening: 6.00 

• Individual Rack For Every Student 

• Real time scenarios by 20+ years experienced CCIE certified industry expert who 
has worked on critical projects worldwide. 


Written + Lab Exam Focus 


FREE Full Scale 8 Hours Exam Lab Included 


Unlimited Lab Access For 1 Year 



Fees: ^ jBfOCG/; 
Introductory Special Offer 

Fees: ? 5,500/- 

+ 14% Service Tax 



Fees: ? 

Introductory Special Offer 

Fees: ? 9,999/- 

+ 14% Service Tax 






Duration: 2 Weeks | 4 Hrs Per Day (starts on is* & 30* 1 of every month) 
Batches: (Contact the Counselors for the next available batch) 


Duration: 2 Weeks | 4 Hrs Per Day 

Batches: (Contact the Counselors for the next available batch) 


CCNA SECURITY 


(Pre requisite is CCNA R&S) 


CISCO CERTIFIED NETWORK ASSOCIATE - SECURITY] 


Duration: 2 Weeks | 4 Hrs Per Day (starts on 15* of every month) 
Batches: Morning: 7.30 or Evening: 6.00 


CCNP SECURITY 


(Pre requisite is CCNA Security at ZOOM) 


CISCO CERTIFIED NETWORK PROFESSIONAL - SECURITY 


Duration: 2 Weeks | 4 Hrs Per Day (starts on 30* of every month) 
Batches: Morning: 7.30 or Evening: 6.00 


CCIE SECURITY 


(Pre requisite is CCNA & CCNP Security at ZOOM) 


CISCO CERTIFIED INTERNETWORK - SECURITY. 


Duration: 1 Month | 4 Hrs Per Day 

Batches: (Contact the Counselors for the next available batch) 


Fees: ? 2,500/- 

+ 14% Service Tax 



Fees: 2,500/- 

+ 14% Service Tax 



Duration: 2 Weeks | 4 Hrs Per Day (starts on 1 5* & 30* of every month) 
Batches: (Contact the Counselors for the next available batch) 


Fees: ? 2,500/- 

+ 14% Service Tax 


Fees: ^ 7,500/- 

+ 14% Service Tax 


Fees: ^ 9,500/- 

+ 14% Service Tax 


Fees:^1 5,500/- 

+ 14% Service Tax 


VMware vSphere (Pre requisite is MCSE) 

Duration: 1 Month | 4 Hrs Per Day (starts on 1 5* of every month) 
Batches: Morning: 7.30 and Evening: 7.30 


Fees: ? 4,950/- 

+ 14% Service Tax 


VMware vCloud (Pre requisite is VMware vSphere) 

Duration: 1 Week | 4 Hrs Per Day (starts on 1 5* of every month) 


Batches: Morning: 9.30 to 11.30 
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Duration: 2 Weeks | 4 Hrs Per Day 

Batches: (Contact the Counselors for the next available batch) 



Fees: ? 2,500/- 

+ 14% Service Tax 


Fees: ^ 5,500/- 

+ 14% Service Tax 


We also offer the following courses (Contact the Counselors for the next available batch) 

► CCNA Voice @ ^7,500/- ► CCNA Data Center @ ^7,500/- 

► CCNP Voice @ ?9,500/- ► CCNP Data Center 

► CCIE Collaboration @ 5,500/- ► CCIE Data Center 

► IPv6 Migration @ ^5,500/- 


?9,500/- 

5,500/- 


FACULTY 


► All Senior Engineers of Zoom working on Live projects 

* Training Engineers of British Army, CISCO, CMC, GE, BSNL, Tata Teleservices and 
Several Corporates etc for 18 Years. 


www.zoomgroup.com 
















FREE Training 


Zoom Technologies offers a number of free resources for the professional development of network 
engineers. 

Register on our website to get access to the video recordings of live sessions on: 

■ MCSE - Windows Server 201 2 

■ Cisco - CCNA "1 

■ Cisco -CCNP r All Tracks (R & S, Security and Voice) 

■ Cisco -CCIE J 

■ Exchange Server 2013 



- Ethical Hacking and Countermeasure Expert (www.us-council.com) 

Find us at: www.zoomgroup.com 

Like us on Facebook and get access to free online webinars as well as special offers and discounts. 

https://www.facebook.com/ZoomTechnolgies 


Online Training 


Online Training at Zoom is a cost effective method of learning new networking skills from the 
convenience of your home or workplace. 

Taking an online training course has many advantages for everyone (Freshers / Working Professionals). 
Zoom offers online training for the highly coveted CCNA, CCNP and CCIE courses as well as MCSE, 
Linux, VMware, Ethical Hacking and Firewalls, IPv6 with more courses planned for the near future. 
These are live instructor led courses, using Cisco WebEX. Check out our online course offerings at: 

http://zoomgroup.com/online_course 


Job Opportunities 


There is a high demand for network and security professionals at all times. Apart from job opportunities 
in India and the Middle East, network and security administrators are also sought-after in the US and 
Europe. 

If you do not have the right skills, then get them now! Choose the experts in network and security 
training, an organization which has already trained over one hundred thousand engineers. 

For the latest job openings in networking and security, register and upload your resume on: 
http://zoomgroup.com/careers or visit zoom to choose job offering from several multinational 
companies. 
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ABOUT US 


ZOOM Technologies India Pvt. Ltd. is a pioneering leader in network and security train- 
ing, having trained over a hundred thousand engineers over the last two decades. 

We offer a world class learning environment, with state-of-the-art labs which are fully 
equipped with high-end routers, firewalls, servers and switches. All our courses are 
hands-on so you'll get much needed practical experience. 

The difference between us and the competition can be summed up in one simple sen- 
tence. Our instructors are real-time network professionals who also teach. 

Zoom has designed, developed and provided network and security solutions as well as 
training to all the big names in the Indian industry, for the public sector as well as corpo- 
rate leaders. Some of our clients are: 

TATA 

BSNL 

VSNL 

Indian Railways 
National Police Academy 
Air Force Academy 
IPCL- Reliance Corporation 
CMC 

British Army 

No other training institute can boast of a customer base like this. This is the reason for 
the resounding success of our networking courses. If you do not have the right skills, then 
get them now. Come, join the experts! 


Training Centers in Hyderabad, India. 


Banjara Hills 

Ameerpet 

Secunderabad 

Dilsukhnagar 

HDFC Bank Building, 2nd Floor, 

# 203, 2nd Floor, 

Navketan Building, 

1st Floor, # 1 6-1 1 -477/B/1 &B/2, 

Road #12, Banjara Hills, 

HUDA Maitrivanam, Ameerpet, 

5 Floor, # 501 

Shlivahana Nagar, Dilsukhnagar, 

Hyderabad - 500 034 

Hyderabad -500 016 

Secunderabad - 500 003 

Hyderabad - 500 060 

Telangana, 

Telangana, 

Telangana, 

Telangana, 

India. 

India. 

India. 

India. 

Phone: +91 40 23394150 

Phone: +91 40 39185252 

Phone: +91 40 27802461 

Phone: +91-40-24140011 

Email: banjara@zoomgroup.com 

Email: ameerpet@zoomgroup.com 

Email: mktg@zoomgroup.com 

Email: dsnr@zoomgroup.com 


website: www.zoomgroup.com 


